Question says most of it but here&#39;s some additional deets:
<ul>
<li>I want to use a 3rd party API in a SPA but don&#39;t want to expose my API key in the client-side application</li>
<li>I am using Firebase for hosting and don&#39;t have access to storing the key in a NODE_ENV variable which some answers suggest to use [does this even work?]</li>
<li>I have read answers to make a server-side app which stores the API key, takes client-app requests, makes those to the API and then returns the their response to the client-app. Is there a guide on how to make this, though?</li>
</ul>
Looking for the easiest method here, not the &quot;most correct&quot; ;)

**Question says most of it but here's some additional deets:**

- I want to use a 3rd party API in a SPA but don't want to expose my API key in the client-side application
- I am using Firebase for hosting and don't have access to storing the key in a NODE_ENV  variable which some answers suggest to use [does this even work?]
- I have read answers to make a server-side app which stores the API key, takes client-app requests, makes those to the API and then returns the their response to the client-app. Is there a guide on how to make this, though?

Looking for the easiest method here, not the "most correct" ;)

What is the easiest way to keep 3rd party API key private for use on a single-page application?

Product

Explore

Company

Blogs

Support