Hey everybody quick question here. Are the apiHost and clientKey to connect to the sdk supposed to be secret? I can see the request URL contains both these pieces of information as part of the request, and this is visible to the user when using growthbook client side. I'm wondering how sensitive this information is, and if I should take steps to obfuscate this?
11/30/2023, 9:57 AM
⭐ Our official support hours are 6:30am - 5pm Pacific Time, Monday through Friday. You may occasionally hear from us outside of these hours.
Your support request has been logged in our system. Our support team will get back to you very soon!
11/30/2023, 2:08 PM
It's intended for client-side use and is okay to be visible. If you want added security, you can opt-in for encrypted features