Level 61
Depending on your setup. Do you own other servers also? If you do I guess it is enough. If you don't I would have a separate secret key for every server so you can change which ones can access your API.
Jul 8, 2021
1
Level 1
How can i secure my public api (server to server connection)
I am going to expose the API as a web service and protected by a secret key. It will be server to server connection.
But how can i do that without user registration?
Is it just generate a secret key and store in env then pass to the other server? So they can pass it in header everytime make request? And also create middleware to check the header secret key?
Please or to participate in this conversation.