How to protect API routes in Next.js?

Monday, May 20, 2024

140

How to protect API routes in Next.js?

rated 0 times [ 145] [ 5] / answers: 1 / hits: 14540 / 3 Years ago, fri, february 26, 2021, 12:00:00

I am using Next.js API routes - https://nextjs.org/docs/api-routes/introduction but I don't know how to protect them from public.

Now those routes are public in my production server.

For example: when I go to mysite.com/api/cats in browser, it returns -

{ success: true, data: [...] }

Please help, how do I hide those API routes from public?

More From » node.js

Answers

9

If you prevent the browser from requesting the URL then the user won't see the data when they type the URL into the address bar and your JavaScript won't see it when it makes an Ajax request to the same URL.

You can't hide the data from the user of the browser while still allowing your application running in the same browser to access it.

[#1729] Saturday, February 20, 2021, 3 Years [reply] [flag answer]

answered 3 Years ago

Only authorized users can answer the question. Please sign in first, or register a free account.

monetm

monetm

Add To Favorites

Total Points: 615

Total Questions: 103

Total Answers: 119

Location: Finland

Member since Fri, Oct 21, 2022

2 Years ago

monetm questions

1 React props for passing color

Wed, Sep 9, 20, 00:00, 4 Years ago

1 How to catch the error when making fetch api request?

Sun, Jul 26, 20, 00:00, 4 Years ago

1 How to stop propagation on Link elements from React-Router-Dom?

Thu, Jul 2, 20, 00:00, 4 Years ago

1 Wait for an xpath in Puppeteer

Thu, Jun 11, 20, 00:00, 4 Years ago

1 How to display form validation error messages accurately for more than two input fields using only JavaScript?

Tue, May 5, 20, 00:00, 4 Years ago

;