Has anyone out there had problems with their Sunlight/Open States API key being stolen and abused? Does anyone feel this is a valid concern?
Granted, stealing and abusing someone else's API key would get what... free legislative info that is already free? But there always seems to be some idiot who wants to ruin a good thing.
I'm just concerned that if I use my API key over HTTP (clear text), someone will steal it, make a bunch of requests, and then Sunlight may throttle or terminate my access. I don't want to get blacklisted or have to register for a new key and then update my app and possibly my client apps.
Am I just worrying too much or have people found the need to, for example, add a layer like
StormPath for processing their Open States API requests?
Thanks.