I suggest you ...

Don't expose access keys in user logs api

The loggr access key is out in the open.
Definitely this should not be the same as our "usual" access key.
Even better would be some time-restricted access key which we could request server-to-server. That way, if someone tries to abuse it, atleast they have a limited window of opportunity.

1 vote
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    I agree to the terms of service
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Matt Houser shared this idea  ·   ·  Admin →

    0 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      Submitting...

      Feedback and Knowledge Base