I have a simple html website that pulls blog posts from the database. This site is not behind an authentication wall so anyone can see it.
Backendless.Data.of('blogs').find();
Easy peasy, no problem. My question is what would happen if a user pulled up their browser console and ran this before going to lunch:
setInterval(function() {
Backendless.Data.of('blogs').find()
}, 100);
This would blow through my API limit. Is there a way to prevent something like this?
You need to specify the logic on the client side, which will determine who exactly sends these requests - bot or person. If it is a bot, then on the client side you can try to write the logic that will define it, and then limit its ability to make API requests.
If these requests are generated by real people, this behavior cannot be predicted. Your application will have to send requests to Backendless for service and respond to the user who generated the request.
If you cannot determine who sends these requests (person or bot) then perhaps you have a schema, how do you do it?
Regards,
Marina