Hey there,
I’m recording some lessons on WeWeb’s SQL Integration, and some questions came up about security:
Question 1) My SQL Query is exposed on the console:
So, doesn’t it leave me vulnerable to SQL injection and other threats?
Question 2) As the call is being made clientside, could a user have access to my database credentials?
We do know that Clientside API calls always expose all data sent, and that’s why we should always use serverside calls when dealing with sensitive data.
How does that concept apply to SQL connections on WeWeb?
Thanks!