Expose endpoints only internally
Hey, for our use-case I would like to prevent users from directly accessing the API. I would like to make it so only nuxt is able to access the nitro endpoints and return a 403 if someone directly tries to access them.
1 Reply
I would like to learn what methods can be used to prevent web scraping as well. I know by nature nuxt need to expose api endpoints for spa navigation. I read somewhere one can check TLS fingerprint but it confused me a lot. So eventually it became a decision for me to use Nuxt with better UX, or full SSR website.