I concur with this method. I don’t think I’d want people writing directly to my database without data validation. An intermediary API could do data validation, security checking to make certain they have rights to the API, etc.
I didn’t mean to imply that Glide is not secure. What I meant was if an app developer gives a 3rd party access to the app API, it possibly needs to be able to turn that off at some point. Going through an intermediary API would allow that (as well as the data validation, which was my main point).
Need to expose API to a 3rd party, setting up intermediate API might be the solution. Can you ask Jack to do a quick tutorial on how to use Integromate or something like that to do this?