Scrap all of the API key stuff. Move to JWT instead. This will simplify a lot of the code, move to a more standard form of authorization, and will increase speed by not having to do DB queries every time an API endpoint is called in order to verify the API key.
Scrap all of the API key stuff. Move to JWT instead. This will simplify a lot of the code, move to a more standard form of authorization, and will increase speed by not having to do DB queries every time an API endpoint is called in order to verify the API key.