I want to know whether API calls are sent directly from my browser to the API service, or does the Retool cloud server actually send them?
Hey Mark,
They're always routed through Retool to manage access permissions, and ensure sensitive API keys and other credentials aren't leaked to the browser :-).
You can read more here:
https://docs.retool.com/docs/security#data-storage-and-security
Jonathan
Great, thanks Jonathan. Is there any guidance for whitelisting IP addresses?
Come on Mark, one search in the documentation link I provided;
https://docs.retool.com/docs/allow-retools-cloud-ip-addresses
Thanks, and apologies.