Password auth with Web Unlocker?

[Manouchehri]

Hi there,

Thanks for this project, was hoping somebody would make it!

Is it possible to use a password instead of the account-wide API token?

[meirk-brd]

Hi,

Thank you for reaching out!

At the moment, we support password-based authentication only for our Scraping Browser. Could you please share why using a password would be preferable to an account-wide API token?

Our current approach of using a single API token across most tools was designed to simplify authentication. However, we’re open to considering support for username:password authentication if there’s a strong use case. Could you kindly elaborate on your specific needs?

Looking forward to your response!

[Manouchehri]

Our current approach of using a single API token across most tools was designed to simplify authentication. However, we’re open to considering support for username:password authentication if there’s a strong use case. Could you kindly elaborate on your specific needs?

If my account API token is ever compromised, an attacker would be able to completely drain my account across all zones (and possibly override spend limits; unsure since I haven't tested that).