* refactor how-to guide for creating a token * fix token links * update SDK reference * beginning of direct api guide * refactored frontend api guide * lint staged breaking notes * update docs - cors for frontend * update token guide images * update after review * Apply suggestions from code review `website/docs/user_guide/token.mdx` Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Apply suggestions from code review `website/docs/topics/frontend-api.md` Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Apply suggestions from code review Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * Apply suggestions from code review Co-authored-by: Thomas Heartman <thomas@getunleash.ai> * pr review * docs: Add info about front-end tokens + formatting * docs: add info about token anatomy * docs: link to correct place in doc * docs: replace "direct access API" -> "front-end API" * docs: rename file frontend-api -> front-end-api Co-authored-by: Thomas Heartman <thomas@getunleash.ai>
3.0 KiB
title |
---|
Front-end API access |
:::info Availability
The Unleash front-end API is an experimental feature and is currently in development.
:::
The Unleash front-end API offers a simplified workflow for connecting a client-side (front-end) applications to Unleash. It provides the exact same API as the Unleash proxy. The front-end API is a quick and easy way to add Unleash to single-page applications and mobile apps.
Compared to using the Unleash proxy, using the Unleash front-end API has both benefits and drawbacks. The benefits are:
- Managing client-side API tokens is easier. With the Unleash proxy, you need to create and manage client keys manually; with the front-end API, you manage client-side API tokens in the exact same manner as other API tokens.
- You don't need to configure and run an Unleash proxy. The front-end API is part of Unleash itself and not an external process. All proxy clients will work exactly the same as they would with the Proxy.
On the other hand, using the front-end API has the following drawbacks compared to using the proxy:
- It can't handle a large number of requests per second. Because the front-end API is part of Unleash, you can't scale it horizontally the way you can scale the proxy.
- It sends client details to your Unleash instance. Unleash only stores these details in its short-term runtime cache, but this can be a privacy issue for some use cases.
These points make the Unleash front-end API best suited for development purposes and applications that don’t receive a lot of traffic, such as internal dashboards. However, because the API is identical to the Unleash proxy API, you can go from one to the other at any time. As such, you can start out by using the front-end API and switch to using the proxy when you need it.
Using the Unleash front-end API
When using the front-end API in an SDK, there's three things you need to configure.
Front-end API tokens
As a client-side API, you should use a front-end API token to interact with it. Refer to the how to create API tokens guide for steps on how to create API tokens.
Cross-origin resource sharing (CORS) configuration
You need to allow traffic from your application domains to use the Unleash front-end API with web and hybrid mobile applications. You can update the front-end API CORS settings from the Unleash UI under admin > CORS or by using the API.
API URL
The client needs to point to the correct API endpoint. The front-end API is available at <your-unleash-instance>/api/frontend
.
API token
You can create appropriate token, with type FRONTEND
on <YOUR_UNLEASH_URL>/admin/api/create-token
page or with a request to /api/admin/api-tokens
. See our guide on how to create API tokens for more details.