Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

Hiding JWPlayer enterprise Key

I noticed that in many examples the enterprise key is defined inline on the page. Is this the recommended way of including the key? Doesn't this present a security issue? I understand that, since it's all client side, there's no way to completely obscure the key if someone wants to find it, but couldn't anyone else looking at the page simply steal the enterprise key, or is it okay to simply include it on the page?

1 Community Answers

Up Down

George

JW Player Support Agent  
0 rated :

Hi,

We usually suggest our customers use the cloud-hosted library instead of self-hosting for this reason. The cloud hosted library and the single-line embeds (that also load the cloud hosted library) have a rotating key to prevent this from happening.

We also encourage enterprise customers to turn on secure player embeds in the Properties section of their Dashboard to avoid having someone steal the entire embed.

This question has received the maximum number of answers.