Skip to content

[Feature Request] add cloudCodeKey for cloud code only access #2440

Closed
@smassin

Description

@smassin

The idea behind this feature is to have a key that only has access to cloud code functions.

Why? So that you can protect all other routes from being publicly available and to force all users actions through cloud code which gives the developer more control over what is and isn't allowed.

I know CLPs can have a similar effect but I would prefer if an outside user didn't even get that close to the database. Client side Javascript is just too insecure and the files API allows people to just upload whatever they want unrestricted.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions