Authenticating Http API
Calling mutations and queries created on a convex project using http api (mydomain.convex.cloud/api/query).
I want to secure this endpoint on my convex project using cors to allow only my main application to talk with convex. Right now if I called this endpoint and specified a query or mutation name in the body I would be able to call it and get back results.
I already checked the authentication part on convex docs, but what I need is my app to call this api only. So adding a constant bearer token on my main app is kinda useless..
Can anyone please help with this.
I want to secure this endpoint on my convex project using cors to allow only my main application to talk with convex. Right now if I called this endpoint and specified a query or mutation name in the body I would be able to call it and get back results.
I already checked the authentication part on convex docs, but what I need is my app to call this api only. So adding a constant bearer token on my main app is kinda useless..
Can anyone please help with this.
