Any downsides of sharing content api key?

I am planning to share my content api key with multiple programmers.
I know that it would just give them access to the public data; however, I was wondering if they key could be abused in anyway.

One thing that comes to my mind is using the key to make slow queries that would eventually slow my server.

Anything else comes to mind?

Yes, malicious people could use a content API key to make slow queries, or DDoS you, but the keys are designed to be public and are strictly read-only so there is no special risk from sharing them.

The most important thing here is to understand that there is no such thing as “my content API key”, you can create as many integrations as you like, each one with an individual content API key.

If you’re planning to hand out keys to individuals, the safest thing to do is to give out individual keys, so you can track any misuse and delete keys that are causing problems.

3 Likes