I want to know whether API calls are sent directly from my browser to the API service, or does the Retool cloud server actually send them?
They're always routed through Retool to manage access permissions, and ensure sensitive API keys and other credentials aren't leaked to the browser :-).
You can read more here:
Great, thanks Jonathan. Is there any guidance for whitelisting IP addresses?
Come on Mark, one search in the documentation link I provided;
Thanks, and apologies.