The next step to get your API ready to publish on RapidAPI is adding a base URL. All API endpoints are relative to the base URL. Simply type the base URL you intend to use in the and click save.
You can also update your base URL from this page at any time. If you are interested in setting up Multi-Base URLs, check out our guide here.
For security reasons, you should protect your API and block requests coming from outside the RapidAPI infrastructure.
RapidAPI adds the X-RapidAPI-Proxy-Secret header on every request. This header has a unique value for every API, and if the header is missing or has a different value, you can assume the request is not coming from our infrastructure. The header for this API is: X-RapidAPI-Proxy-Secret followed by a unique string.
Every request coming from the RapidAPI Network will come from the following IP addresses. You can whitelist these IPs, as they are the ones used to send requests only from RapidAPI.
A request coming from RapidAPI can be considered already authenticated, so no billing or authentication checks are required on the API side.
Here is the complete list of IPs to whitelist: [Updated February 15th 2019]
Notice that you must accept API requests from ALL IPs bellow, regardless of which region your servers are located in.
Updated 6 months ago
|Security - Threat Protection|