Search Hashnode

Search posts, tags, users, and pages

What's the best way to prevent abusers/bots from hitting an API? | Hashnode

Forums

Thread

Ryan Mendes

coder / hashnoder

Apr 26, 2016

What's the best way to prevent abusers/bots from hitting an API?

I'll be building a small analytics app (just like Google Analytics) which will be initially used by a set of websites owned by me. Like GA, this will be a tiny snippet that will hit my server and send some data. There is no authentication or anything like that - Just an open pub-id. My question is : How do I make it difficult for bots or some random spammers from hitting my API continuously and sending fake data?

#apis #programming #nodejs #javascript

Responses(2)

Nate

King Puma

Apr 26, 2016

domain verification? check to see if its originating from the the domain you own.

if you are running your app in AWS/Google cloud/Azure, then you can firewall it so only your host can access it.

Jan Vladimir Mostert

Idea Incubator

Apr 28, 2016

Firewall it if only you're using it, otherwise add some authentication to it.

Most discussed

S
How do I keep Terraform state manageable across teams without losing my mind?
626T A M3d ago
T
We shipped goroutines everywhere and it cost us
714D R S2d ago
R
Frontend testing feels like it scales backwards
614P C S2d ago
P
How do you handle shared state across route groups in Next.js App Router?
59N A J3d ago
N
Denormalizing early will cost you more than it saves
59A D2d ago

Recent threads

A
The New Human Operating System: Why the Biggest Innovation in Tech Support is Empathy
113h ago
J
Customising appearance of Hashnode-hosted blog
24F19h ago
T
Fine-tuning LLMs on your proprietary data is mostly theater
11J1d ago
J
You probably don't need to refactor that legacy code right now
31d ago
M
Async code reviews killed our bottleneck
11d ago