FAQ

Frequently Asked Questions

My Moralis App ID is publicly visible in the front end. Is this a security risk?

No. The App ID is meant to be public and is included in all requests to Moralis. It's ok to include the App ID in a public code repository like Github. With the App ID a user can create accounts and call any Cloud Functions. To control when new users can sign up use a beforeSave trigger on the User collection. To learn more about how to lock down your app see the Security docs.

What you want to protect is the Master Key as that can override all permissions and has full access to read, write, and delete. It's best use the Master Key only on the server (i.e. Cloud Functions), never use the Master Key in the front end.

FRPC

What version should I use on Mac?

  • frp_x.xx.x_darwin_amd64.tar.gz

How should I run frpc on Mac?

  • Open a terminal

  • Navigate to frpc directory

  • Type ./frpc -c frpc.ini

Why does Mac say that frpc is from an Unidentified Developer?

This is because frpc is not signed for Mac. To allow it to run follow these steps:

  • Navigate to frpc folder in Finder

  • Right click on the frpc executable while holding Ctrl

  • Select Open

Mac will give you information about the risks of skipping the system security. Please read it carefully and click Open in the popup if you agree.

What are the risks of giving permissions to frpc even if it is from an Unidentified Developer?

frpc executable is not signed by Apple. It means that the OS cannot know what kind of code it is going to execute. By accepting to skip the system security you are telling the OS that you trust the app. Please do so at your own responsibility. To avoid any issues make sure you have downloaded frpc from the official repository at https://github.com/fatedier/frp/releases.