Hi all, I have a personal website that I use to display my FCC projects online for potential employers to look at. My weather app is on there and recently was contacted by someone pointing out an error. I fixed it and only today got an email saying my API calls reached the limit, 2500 calls today. Clearly this person has stolen my app and is using my API key heavily.
Yes I can just change my API key, but they can just get it again. Why they don’t just get there own, I don’t know?
I’ve read about creating a proxy on/where my site is hosted, but I don’t know how to do it and googling for info doesn’t bring up anything useful/understandable, or maybe to create a call to a php file which only returns the key to a specific page? But again I’d be lost on how to implement it, the most php I’ve done is the email side of things.
Ideas or links to a tutorial would be great, anyone else have this issue?