being the one from the user's PC. How one would go about securing this and providing access
to the API, besides having to authenticate users like FB does.
here is that conversation
Thanks oddz. Seems authentication is the only way.