The Movie Database qoldaýy
Qoldaý → API qoldaýy
What to anticipate when going public with a TMDB-IMDb integration userscript?
posted by ofitichorSTAFFMOD on 2023 Qyrkúıek 16 at 2:24 AM
What problems do I have to expect if I publish a userscript that embeds the score from TMDB on IMDb. This question I just also in view of the API key, which is then also public.
ofitichor jaýaby
2023 Qazan 1 kúni 3:11 PM ýaqytynda
An answer would help me 😅
robbie3999 jaýaby
2023 Qazan 2 kúni 5:35 PM ýaqytynda
If you want an answer you need to ask a more specific question. No one knows what your app is and what kind of problems you might have with it.
ofitichor jaýaby
2023 Qazan 3 kúni 3:02 AM ýaqytynda
Actually, I thought I was already very special.
I want to publish a javascript for Tampermonkey/Greasemonkey, which embeds the score from TMDB in IMDb. So that the score can be displayed, my API Key is needed.
My question is, could publishing my API Key through this javascript be a problem? Like violating some rule.
Travis Bell jaýaby
2023 Qazan 3 kúni 10:29 AM ýaqytynda
Not sure it's against a rule per se, but it makes your key easy to steal. If a bad actor were to get a hold of your API key and start using maliciously and we have to block it, it will take your project offline. I suppose that is the main concern you should be thinking about.
ofitichor jaýaby
2023 Qazan 3 kúni 10:35 AM ýaqytynda
Yes, that is what worries me. So my question is how the API key could be used maliciously? And if I were to be blocked, could I request a new one, which I would then accordingly no longer publish?
A solution might also be an API key that could be assigned with restrictions, e.g. read-only rights and quantity of requests.
Travis Bell jaýaby
2023 Qazan 3 kúni 10:46 AM ýaqytynda
We have to block keys semi regularly because they are used on illegal streaming sites, piracy and the like.
Yes, you can re-generate a new key from within your account's API settings page at any time.