Here are some common patterns we see for API key management.
- 1 frontend
- 1 backend
The frontend keys would be restricted by HTTP Referer to be usable on each application’s domain(s). The backend keys would be restricted by the external IP address(es) where your Java code is deployed.
Create one API key per environment. For example:
- 1 dev / sandbox
- 1 test / integration
- 1 staging / UAT
- 1 production