API Secure

Abdul_Qadir1 · May 19, 2021, 2:19pm

Need Extension developer i have python api

Rogerio_Rios · May 19, 2021, 2:32pm

Abdul_Qadir1 · May 19, 2021, 2:35pm

I saw already this post I have a recharge app It has been hacked three times, so I’m asking you to make an extension i m using web compnent

iamwsumit · May 19, 2021, 2:38pm

And you think that the extension can protect your API from hacking.

Extension can’t protect your API, you will have to make your API as much as strong you can. It is the only way that you can use for making it difficult to hack.

Abdul_Qadir1 · May 19, 2021, 2:40pm

my API is very strong But hacker get the endpoint out of the app, so I’m making an extension

iamwsumit · May 19, 2021, 2:41pm

Then why it got hacked three times??

May you tell me how a extension can protect it?

Abdul_Qadir1 · May 19, 2021, 2:43pm

Then tell me how to secure API?

Rogerio_Rios · May 19, 2021, 2:45pm

Google … There are many security experts.

*#off-topic"

today I used Google to understand annotation, build.xml, import …

Abdul_Qadir1 · May 19, 2021, 2:47pm

I’m calling API from Google Spreadsheet, but how do hacker extract?

iamwsumit · May 19, 2021, 2:50pm

#off-topic

@Rogerio_Rios are you starting making extension

Abdul_Qadir1 · May 19, 2021, 2:51pm

Can run the kodular app on a stratic IP?

Abdul_Qadir1 · May 19, 2021, 2:58pm

I mean, when call an API from the web component, can set a static IP?

iamwsumit · May 19, 2021, 2:59pm

I don’t know much about APIs. So I can’t help you much or also as you have already mentioned that it is python script. May be I will able to help you in a php script. You should google it as @Rogerio_Rios said. You will definitely get something from there

Abdul_Qadir1 · May 19, 2021, 3:01pm

I’ve been researching for a long time and I haven’t found anything so I put it in the community today

Abdul_Qadir1 · May 19, 2021, 3:04pm

No matter how much I score Api, anyone can hack when Api end point is found.

Abdul_Qadir1 · May 19, 2021, 3:04pm

Can you help me how to score in PHP?

iamwsumit · May 19, 2021, 3:11pm

What do you mean by an endpoint.
I didn’t get your endpoint.

It is completely wrong. Hacking chances are more when your API is less secure. It is totally wrong statement.

Maxtern · May 19, 2021, 3:24pm

Hmm. I have one way to protect your app. Use php script to load API key and encrypt your API to AES algorithms and use 2-3 PHP script to load API in encrypt form. Use AES encryption is powerful and it can’t decrypt easily. Make your app like " your app not certain any API key because if user decompile your app than he/ she can see your API key. There are more ways to protect it. Now it depends on you make some more logic and improve the security.

Abdul_Qadir1 · May 19, 2021, 3:30pm

How to add php script in kodular

Rogerio_Rios · May 19, 2021, 4:24pm

PHP script always run in server…
In Kodular , we use web Component to POST pra Get.

JWT -Json Web Token