Replies: 2 comments 1 reply
-
To ensure the security of your API key, you can store it on your server and create an HTTP service that forwards requests to the OpenAI API. You can also implement additional authentication methods such as cookies. |
Beta Was this translation helpful? Give feedback.
-
You should never store sensitive data like API keys on a user's device as it can be extracted by decompiling the APK. If sensitive data must be stored on the device, they should be encrypted and securely stored. However, understand that encryption only makes the task harder but not impossible. |
Beta Was this translation helpful? Give feedback.
-
I have faced with one issue. Looks like anyone can decompile apk file and retrive API key and reuse it.
Do you have some recommendation how to protect it in case of using this library for Android projects?
Beta Was this translation helpful? Give feedback.
All reactions