How can I prevent users from using my AppId and JavaScript key to generate new users?

Question

I am building a website with a Parse backend. So I'm building register/login right now, and am thinking that users can take the AppId and Javascript key and write their own javascript to register users on their own.

How can I prevent this from happening, is there a way to restrict the IPs where javascript Parse can run?

See https://parse.com/docs/data#security. The gist of it is that you can create class-level permissions in the data browser. — danh, Jan 17 '15 at 21:23

score 0 · Answer 1 · edited May 23 '17 at 10:25

0

I'm guessing you mean because the user can look at your javascript and get the variables from there. If thats the case look here for a thread looking at javascript security. How to prevent your JavaScript code from being stolen, copied, and viewed?

The jist of it seemed to be that it is hard to do.

edited May 23 '17 at 10:25

Community

1
1

answered Jan 18 '15 at 20:58

JayDev

1,340
2
13
21

How can I prevent users from using my AppId and JavaScript key to generate new users?

1 Answers1