Backendless Support
 
Answered

Decompile APK file

Hello,

I'm at the final stages to publish my app and I'm worry about the stored API values (API Key, Secret), sine it is possible to decompile the APK file and get above values and start missing with the data.

Is there a way to protect the API values so in case anyone try to reverse engineering it he find nothing?

Thank you.

Best Answer
photo

Hello,

The APP ID and keys are not meant to be super secret. If anyone wants to get your ID/keys, no matter how hard you try to hide them, it will be possible. Your app security should be done by restricting access to app resources (objects, users, files, etc) using application roles and permissions.

Regards,

Mark

Leave a Comment

Comments (2)

photo
1

Hello,

The APP ID and keys are not meant to be super secret. If anyone wants to get your ID/keys, no matter how hard you try to hide them, it will be possible. Your app security should be done by restricting access to app resources (objects, users, files, etc) using application roles and permissions.

Regards,

Mark

photo
1

Hello Mark.

Currently roles and permissions doing the job.

Thank you.