I was attempting to configure a few apps with APIs. Unfortunately securely passing key with something like a .env variable is problematic from a security standpoint. It seems to me that perhaps using a proxy server to pass the keys might be a better idea. I am currently running a Debian NGINX ISPconfig server and was wondering what is the best way to handle API keys and how to do it. NGINX proxy? php proxy? and will this work on a basic ISPconfig site? Thanks for you input
