Bjoern
unread,Jul 13, 2009, 12:02:44 PM7/13/09Sign in to reply to author
Sign in to forward
You do not have permission to delete messages in this group
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to bitly API
Hi,
if I use the Javascript client or in general the JSONP functionality
from a web site, my API key will be public for anyone to see. Is that
OK with Bitly?
I would not be able to prevent abuse of the key, but I am also not
quite sure what anybody would want to use it for. Perhaps to create
spam URLs, but might not be worth the effort.
Also since there is not history for URLs shortened via API, I wouldn't
even notice if somebody steals my key. I hope at least nothing can
fall back on me if somebody else uses the key.
Maybe that is the intended use of the authentification, but I think it
would be simpler to just let go of the key.
For example Twitter for it's search API just requires a User-Agent or
Referrer.
Björn