Security: FAQs
- How does Algolia IP obfuscation work?
- Can I restrict an index to internal users only?
- Can I send API requests to Algolia via HTTP without TLS / SSL?
- What are the best practices to manage Algolia API keys in my code and protect them?
- How I do browse or monitor the logs from my Algolia portal?
- How many secured API keys can I create?
- Do API keys expire?
- How do I find my Admin API key?
- How do I restrict application access to a limited number of IP addresses?
- How do I hide my API key?
- Why is the top HTTP referrer of my operations showing as "None"?
- How can I grant Algolia Support access to my application?
- How do I generate keys?
- How do I fix Content Security Policy (CSP) errors on my site?
- Can I have more than one Admin key?
- How do I look at my logs on the Algolia Dashboard?
- Do you have any kind of On-premises or FedRAMP services?
- What internal logs does Algolia keep?
- How can I update rate limit of auto-generated Search API key?
- How do I see who's updated the index recently?
- How can I rate limit an API key?
- How can I share vulnerability reports to Algolia?
- What should I do if my Algolia API keys are Compromised?
- Will you use/share/sell my data?
- Where do I enter data privacy contact information (DPO, EU Rep)?
- What should I do if my API key has been stolen?
- What measures do you have to protect our data against a human error by Algolia?
- Where can I find out more about Algolia's security measures?
- What is Algolia's product compliance?
- Is my data encrypted and secured?