Am I right in thinking that storing secrets/API keys in cloud functions is OK th... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Havoc on Feb 13, 2022 \| parent \| context \| favorite \| on: CORS is not meant to secure an API endpoint Am I right in thinking that storing secrets/API keys in cloud functions is OK though. i.e. CF cloud workers or similar

JanSt on Feb 13, 2022 [–]

As long as it stays on the server the end user can not access it (unless they are exposed somehow).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact