更新时间:2023-08-17 14:50:22
在我看来,你有两个选择:
The way I see it you have two options:
无论哪种方式,仍有可能有人获取您的密钥并使用它代表您提出请求.他们可以通过欺骗引用者自己来做到这一点,即使您走那条路,因为它是客户端浏览器提供的标头.
Either way, it is still possible for someone to get your key and use it to make requests on your behalf. They could do it by spoofing the referrer themselves even if you go that route since it is a header provided by the client browser.