How to use foursquare public search api in a wordpress plugin to avoid exposing our key/secret

I’m adding location to my wordpress plugin and wanted to use the foursquare public API. What i wanted to understand is how exactly that would work since my plugin will be installed on various system. As you can see the user doesn’t need to be authenticated, so i could provide in the plugin our own client_id an client_secret to make calls to the api, but that would expose them to the public and some competitor could abuse that to break the rate limit. What’s the best way to handle this?How does instagram work for example?I can use location search even if i’m not logged into foursquare, how do they do this? My idea was to proxy the call to our api and make the call from our api by adding our client_id/secret and have the user optionally insert his own, but is it really a bad idea hardcoding the id/secretin the plugin?

Related posts

Leave a Reply

1 comment

  1. There is a way; each user of your plugin should get foursquare API credentials separately and fill it in the settings of the plugin (dashboard) to activate it.