Authorization request header.
Example
Key handling
- Store production API keys in environment variables or a secrets manager.
- Use separate keys for development, staging, and production projects.
- Rotate keys if they are exposed in logs, source control, client-side code, or third-party tools.
- Keep high-volume polling on a backend service so usage can be controlled and cached.