![](https://secure.gravatar.com/avatar/c003180c8146877ddce78db42cc2ccdb?rating=PG&size=50&default=https%3A%2F%2Fcdn.desk.com%2Fassets%2Funknown_user_50-8ad5644bbe6b1bd7454f2ea465f782bd.png)
How to protect API?
I will use jsPlayer in my web application where my users to access the videos need to login, however I see that any non-authenticated user that knows the jwPlayer API can get completely access to the videos and playlist through like "https://cdn.jwplayer.com/v2/playlists/[PLAYLIST-ID]" or "https//content.jwplatform.com/feeds/[VIDEO-ID].json".
How can I restrict calls to these API?