Vincent

May 8, 2016

I wouldn't do that. It's bad design. Anyone interested can look into the workings of your API anyways by using the Chrome network monitor for instance. The behavior desired by you does in no way secure or hide the API nor does it prevent anyone wanting access.

RZ

Rafael Zomer Antunes

Fullstack Developer

May 9, 2016

I already have a login system to access the API, this behavior is just to prevent the intern users from enterprise can access data that isn't permitted for they. I didn't remember this thing that you said, thank you, i'll take care of this point too with some permission system.

Search Hashnode