https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4255#M1926 <P>Thanks&nbsp;<a href="https://systematic.workato.com/t5/user/viewprofilepage/user-id/1695">@meghan-legaspi</a>&nbsp; -- added them as feedback !&nbsp;</P><P>I loved the "LIVE CHAT" with real people in Workato <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span> Keep rocking with support experience!</P> Wed, 12 Apr 2023 15:14:56 GMT levajar 2023-04-12T15:14:56Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3463#M1687 <P>Hi all-<BR /><BR />Second question of the night! One of the main reasons we purchase Workato and in particular the API platform was to be able to create custom buttons for customers in our front end that would activate Workato recipes. Eventually we will have a proxy system created by our Product team to secure those calls (so in reality they get sent server to server) but we have some pressing customer needs that have to be met before the proxy is available. <BR /><BR />Has anyone else creatively solved this issue? The main goal is to keep API keys out of the front end. Thanks in advance for any advice you can share!</P> Tue, 13 Sep 2022 11:08:35 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3463#M1687 michael-siegel 2022-09-13T11:08:35Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3464#M1688 <P>Following!</P> Wed, 14 Sep 2022 20:17:40 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3464#M1688 mppowe 2022-09-14T20:17:40Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3465#M1689 <P>Hi Michael - Would be good to understand the use case and requirements in detail. How would you be authenticating the client request with the proxy? </P><P>You could potentially create a proxy API endpoint on API platform and it can then call the actual Workato API endpoint.</P><P>API platform support both token based as well as JWT authentication and you can set policies such as IP whitelisting. Not sure if JWT would be an option for authentication for your scenario.</P><BR /><BR /><BR /><BR /> Sat, 17 Sep 2022 05:26:34 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/3465#M1689 jayesh 2022-09-17T05:26:34Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4242#M1923 <P>I would love to have "API Proxy" without recipe be handled within Workato API Gateway.&nbsp;</P><P>Similar to Mulesoft Flex Gateway solution (where it is managed by customer and controlled on Mule Anypoint control plane). If Workato comes with innovative way of handling it and keep the product easily consumable without adding too much price tag to it -- will be big market differentiator</P> Wed, 12 Apr 2023 13:15:02 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4242#M1923 levajar 2023-04-12T13:15:02Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4245#M1924 <P>This is great feedback&nbsp;<a href="https://systematic.workato.com/t5/user/viewprofilepage/user-id/8762">@levajar</a>! If you haven't already, please feel free to submit this to our product team here:&nbsp;<A href="https://app.workato.com/?fid=projects" target="_blank">https://app.workato.com/?fid=projects</A></P> <P>Just click&nbsp;<STRONG>Resource Hub&nbsp;</STRONG>at the bottom of the screen, then select&nbsp;<STRONG>Share your Feedback</STRONG>.</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot 2023-04-12 at 9.25.38 AM.png" style="width: 408px;"><img src="https://systematic.workato.com/t5/image/serverpage/image-id/326i0E9A17A5868B31DF/image-size/large?v=v2&amp;px=999" role="button" title="Screenshot 2023-04-12 at 9.25.38 AM.png" alt="Screenshot 2023-04-12 at 9.25.38 AM.png" /></span></P> Wed, 12 Apr 2023 13:26:54 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4245#M1924 meghan-legaspi 2023-04-12T13:26:54Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4255#M1926 <P>Thanks&nbsp;<a href="https://systematic.workato.com/t5/user/viewprofilepage/user-id/1695">@meghan-legaspi</a>&nbsp; -- added them as feedback !&nbsp;</P><P>I loved the "LIVE CHAT" with real people in Workato <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span> Keep rocking with support experience!</P> Wed, 12 Apr 2023 15:14:56 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4255#M1926 levajar 2023-04-12T15:14:56Z https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4258#M1928 <P>Great to hear!&nbsp;</P> Wed, 12 Apr 2023 21:23:12 GMT https://systematic.workato.com/t5/workato-pros-discussion-board/securing-front-end-api-requests/m-p/4258#M1928 meghan-legaspi 2023-04-12T21:23:12Z