When creating chrome extensions that play with the youtube data api, the api key is used. But is there any other way to get data from google servers instead of exposing our personal api key in the xmlhttprequest, apart from the naive way of asking the user to create his/her own api in their account and input that to use it in the extension?
what are other options for avoiding to expose google api key
164 Views Asked by Shyam R At
2
There are 2 best solutions below
0
Iván Nokonoko
On
You could use OAuth 2.0 credentials, obtain an access token through chrome.identity API, and then use that token in the XMLHttpRequests.
Related Questions in API
- SuiteCRM how to retrieve all account related contacts
- how do i submit a pastebin or pastee from an android app and get the url back
- BigCommerce PHP API delete Category which contains products
- Interact with chrome bookmarks outside of extensions
- purchase individual items and subscriptions in the same PayPal REST API transaction
- youtube api v3 insert comments
- Youtube api v3 duration
- Responding to an Office 365 event invite via REST
- Convert youtube video to mp3 using Quick MP3 API
- How to real-time monitor the emails?
- Laravel - Fractal - Using Find() in transformer file- is it correct or can it be done more efficiently?
- return data from a Azure API json
- Accessing Picasa Web API using PHP
- RAML multivalued form parameter
- TestFlight API and stats with as3
Related Questions in GOOGLE-CHROME-EXTENSION
- detect requests calls in a url similar to network in chrome dev tools
- How to get chrome extension ID in dev and production?
- Can I create and publish extension to the Chrome Store from my website?
- webkitMediaStream Object Type lost while using sendMessage in Chrome Extension
- Send sqlresult from background to content script
- Adding eventListeners to checkboxes in for loop in chrome-extension
- Is it possible for chrome to nest tabs within a tab?
- JQuery .find() failing on an .ajax() result
- Chrome Extensions - Copy Link Google Search
- Why my color customized theme isn't working? (PC)
- chrome extensions Uncaught ReferenceError: $ is not defined
- Are there any Chrome-specific techniques to scope/isolate CSS?
- Can Chrome extension content script access all tabs?
- How to register service workers to a redirected script URL
- My Chrome Extension Keeps Saying Its Corrupted
Related Questions in API-KEY
- How the client gets api-key when using tastypie ApiKeyAuthentication?
- Android studio doesn't show google maps
- Android Map view does'nt work (white screen)
- Google URL-Shortener API with API-Key returns "403 - Daily Limit for Unauthenticated Use Exceeded." using PHP & CURL
- How to extract ApiKey from Response Headers and use it in another HTTP request on Jmeter?
- Where to store API keys and other 'secrets' in a yesod app
- API key for themoviedb.org
- R Code gmapsdistance
- How do 3rd party APIs prevent API Quote theft?
- refuses to save api key in build.gradle Module app
- As soon as I restrict my Google API key it no longer works
- what are other options for avoiding to expose google api key
- Is it standard to make each user sign up for a 3rd party API key?
- tastypie - Login from mobile to Django, how do I set up with ApiKeyAuthentication
- How can i generate an API key for Baidu China for an website store locator?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
I would refer to Google for best practices.
https://support.google.com/cloud/answer/6310037?hl=en