0👍
seems the best solution for the frontend only is to restrict your API key, which can be easily spoofed. Alongside other solutions that Google suggests are [link]:
- Restrict your API keys
- Independent API key per app
- Delete API keys no longer needed
- Exercise caution when regenerating keys
- Monitor API key usage for anomalies
unless you could manage to implement a backend API version of it and query your backend API instead of Google API and then you could practice some solutions like rate limit on your backend API.
- [Vuejs]-Wrap a Vue.js Firebase-Object into onAuthStateChanged handler?
- [Vuejs]-Need some direction with Vue
Source:stackexchange.com