Raygun Feature Request

Feature Request

Security Raygun4js

Current Status:

New

Votes:

2

+1
Avatar

Jpunt

I've just implemented raygun4js for one of our projects. I've noticed that I can just send about anything using my browser's dev-tools. Would it be possible to have some security on this?

Avatar

Raygun

John-Daniel Trask

Posted on
Oct 02 2013

Hi,

We'd love to look at ways to make this more secure, but because we are expecting clients to send errors there's not much we can do to lock that down (kind of like giving source code to an end user - you've opened pandora's box).

Having said that, we're very much open to suggestions. We recently had a thread on this exact topic here:

http://raygun.io/forums/thread/3216

Let us know if you have some ideas!

John-Daniel Trask
Co-founder
Mindscape

Avatar

Jpunt

Posted on
Oct 02 2013

That's very understandable, for it's a difficult problem to solve.. However, if we'd be able to generate multiple API-keys it would be a lot easier to revoke the one we use for JS, if we endure abuse?

Avatar

Raygun

John-Daniel Trask

Posted on
Oct 06 2013

Multiple keys is certainly one way to help reduce issues.

We'll be adding a bunch of key improvements along with when we release our public read API, so I'll put multiple API keys on the backlog and see if the team can get that included as well (note: the read api is still a while away, just sharing when we could add it).

Thanks,

John-Daniel Trask
Co-founder
Mindscape Limited