6 months ago

Security implications for Admin Vue components

Posted 6 months ago by ibajerai

Hi all!

This has kinda been answered in terms of splitting, but I'm more wondering what the best practice would be around compiling admin specific Vue components with public-facing ones.

Is there any risk exposing the logic of say admin listing tables and API endpoint associated with those displays?

Should I split it out into its own file and include that separately on admin routes?

But even if I split, admin.js (for example) is still accessible publically. Obscurification? Or some other technique to lock it down?

If there's no risk then life is much easier throwing everything in app.js. This seems to be the technique Jeff has used here but his admin endpoints are very few.


Please sign in or create an account to participate in this conversation.