Forem: backmesh The latest articles on Forem by backmesh (@backmesh). https://forem.com/backmesh https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Forganization%2Fprofile_image%2F10270%2F13c6921e-1762-4d6c-82df-a069de3e8c5e.png Forem: backmesh https://forem.com/backmesh en Quickly compare cost and results of different LLMs on the same prompt Luis Fernando De Pombo Mon, 03 Mar 2025 18:29:09 +0000 https://forem.com/backmesh/quickly-compare-cost-and-results-of-different-llms-on-the-same-prompt-3lgl https://forem.com/backmesh/quickly-compare-cost-and-results-of-different-llms-on-the-same-prompt-3lgl <p>I often want a quick comparison of different LLMs to see the result+price+performance across different tasks or prompts.</p> <p>So I put together <a href="https://llmcomp.backmesh.com" rel="noopener noreferrer">LLMcomp</a>—a straightforward site to compare (some) popular LLMs on cost, latency, and other details in one place. It’s still a work in progress, so any suggestions or ideas are welcome. I can add more LLMs if there is interest. It currently has Claude Sonnet, Deep Seek and 4o which are the ones I compare and contrast the most.</p> <p>I built it using a port of AgentOps' <a href="https://github.com/backmesh/tokencost" rel="noopener noreferrer">tokencost</a> for the web to estimate LLM usage costs on the web and the code for the website is open source and roughly 400 LOC</p> deepseek ai opensource discuss 3 common mistakes when integrating the OpenAI API with your web or mobile app Luis Fernando De Pombo Fri, 14 Feb 2025 19:02:14 +0000 https://forem.com/backmesh/openai-api-key-safety-and-mistakes-in-client-side-code-3k2j https://forem.com/backmesh/openai-api-key-safety-and-mistakes-in-client-side-code-3k2j <p>A key concern when building a web or mobile application that uses OpenAI’s language models is protecting your private API key. If you want to keep complexity low and release features quickly, setting up a fully fledged backend just to safeguard an API key can be time consuming. In this article, you’ll learn how to avoid the most common security mistakes when integrating the OpenAI API into a client-side app—without sacrificing simplicity or safety. Overlooking these pitfalls can leave the door open to OpenAI API misuse, which can:</p> <ul> <li>Lead to unexpected or excessive charges on your OpenAI account</li> <li>Violate OpenAI’s Acceptable Use Policy and Terms of Service</li> <li>Potentially expose your project to spam or abusive behavior</li> </ul> <h2> Mistake # 1: Storing the OpenAI Key in Frontend Code </h2> <p>Putting your API key directly in client-side code (using any type of web or mobile framework) as shown in the sample frontend code below is tempting, but also very risky.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">openai</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">client</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OpenAI</span><span class="p">({</span> <span class="na">dangerouslyAllowBrowser</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">apiKey</span><span class="p">:</span> <span class="dl">'</span><span class="s1">sk-proj-YOURSECRETKEY</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">completion</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">OpenAI</span><span class="p">.</span><span class="nx">instance</span><span class="p">.</span><span class="nf">chat</span><span class="p">(...)</span> </code></pre> </div> <p>Anyone can inspect your code (even if it is minified or obfuscated somehow), extract your key, and abuse it. Don't let <a href="https://community.openai.com/t/repeated-fraudulent-use-of-my-api-keys/510465/3" rel="noopener noreferrer">this</a> happen to you. The OpenAI SDK requires the <code>dangerouslyAllowBrowser</code> flag to try to prevent this problem and make sure you add a layer of protection that keeps the secret key away from the end user’s browser or device.</p> <h2> Mistake # 2: Using an Unauthenticated Proxy </h2> <p>Putting your OpenAI API key as a secret in a hosted server or cloud function and calling that endpoint from your client is much better than exposing it directly, but it is still unsafe. Let's take the following client-side application code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code> <span class="kd">const</span> <span class="nx">opair</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://functionroute.yourcloud.com/v1/chat/completions</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({...})</span> <span class="p">});</span> </code></pre> </div> <p>Alongside the cloud function OpenAI API proxy it is calling:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">route</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">yourcloud</span><span class="dl">"</span><span class="p">;</span> <span class="nx">route</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">/</span><span class="dl">'</span><span class="p">,</span> <span class="nx">req</span><span class="p">,</span> <span class="nx">res</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">opair</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="s2">`https://api.openai.com/</span><span class="p">${</span><span class="nx">req</span><span class="p">.</span><span class="nx">path</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authentication</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_SECRET_KEY</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">.</span><span class="nf">clone</span><span class="p">(),</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">opair</span><span class="p">);</span> <span class="p">})</span> </code></pre> </div> <p>Since this proxy is publicly accessible, an attacker could bypass your app and access your OpenAI API even without your private key at <code>https://functionroute.yourcloud.com/</code>.</p> <h2> Mistake # 3: Using an Authenticated Proxy without Permissions </h2> <p>Putting your OpenAI API key as a secret in a hosted server or cloud function and adding authentication so only your users can call the proxy endpoint is quite common and still much better than the setups laid out thus far. However, it is <em>still</em> unsafe. Let's take the following frontend code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">supabase</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">supabase-js</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">jwt</span> <span class="o">=</span> <span class="nx">supabase</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nf">session</span><span class="p">().</span><span class="nx">access_token</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">opair</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://functionroute.yourcloud.com/v1/chat/completion</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authentication</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">jwt</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({...}),</span> <span class="p">});</span> </code></pre> </div> <p>Alongside the cloud function OpenAI API authenticated proxy it is calling:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">route</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">yourcloud</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">createClient</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@supabase/supabase-js</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">supabase</span> <span class="o">=</span> <span class="nf">createSupabaseClient</span><span class="p">(...);</span> <span class="nx">route</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">/</span><span class="dl">'</span><span class="p">,</span> <span class="nx">req</span><span class="p">,</span> <span class="nx">res</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">authHeader</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">headers</span><span class="p">[</span><span class="dl">'</span><span class="s1">authorization</span><span class="dl">'</span><span class="p">];</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// 1. Get the token from the Authorization header</span> <span class="kd">const</span> <span class="nx">authHeader</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">headers</span><span class="p">[</span><span class="dl">'</span><span class="s1">authorization</span><span class="dl">'</span><span class="p">]</span> <span class="o">||</span> <span class="dl">''</span> <span class="kd">const</span> <span class="nx">jwt</span> <span class="o">=</span> <span class="nx">authHeader</span><span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="dl">'</span><span class="s1"> </span><span class="dl">'</span><span class="p">)[</span><span class="mi">1</span><span class="p">]</span> <span class="c1">// Bearer &lt;token&gt;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">jwt</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">401</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">No token provided</span><span class="dl">'</span> <span class="p">})</span> <span class="p">}</span> <span class="c1">// 2. Verify the token using the JWKS</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="p">{</span> <span class="nx">user</span> <span class="p">},</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nf">getUser</span><span class="p">(</span><span class="nx">jwt</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">error</span> <span class="o">||</span> <span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nf">createResponse</span><span class="p">(</span><span class="dl">'</span><span class="s1">Unauthorized</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">401</span> <span class="p">});</span> <span class="p">}</span> <span class="c1">// 3. The token is valid</span> <span class="kd">const</span> <span class="nx">opair</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="s2">`https://api.openai.com/</span><span class="p">${</span><span class="nx">req</span><span class="p">.</span><span class="nx">path</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authentication</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_SECRET_KEY</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">.</span><span class="nf">clone</span><span class="p">(),</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">opair</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">401</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Invalid token</span><span class="dl">'</span> <span class="p">})</span> <span class="p">}</span> <span class="p">})</span> </code></pre> </div> <p>This backend integration for the OpenAI API looks fine at first glance and provides some safety. However, there are three problems with it:</p> <ol> <li>There are no limits to how many times a given user can call your OpenAI API proxy. Any user can call this API proxy up to the default account <a href="https://platform.openai.com/docs/guides/rate-limits" rel="noopener noreferrer">rate limits</a> for the Open AI API associated with your private API key by simply getting their JWT and calling the proxy at <code>https://functionroute.yourcloud.com/v1/</code>. The JWTs, or authentication tokens, typically expire within an hour. That means that someone can generate a token from your client-side code and (mis)use it until it expires. Then rinse and repeat.</li> <li>OpenAI, and other LLM APIs, have endpoints that allow uploading <a href="https://platform.openai.com/docs/api-reference/files" rel="noopener noreferrer">files</a> for augmented analysis and creating <a href="https://platform.openai.com/docs/api-reference/threads" rel="noopener noreferrer">threads</a> with chat history for autonomous assistants. This backend does not provide any permissions or access control over <em>which</em> users uploaded or created <em>which</em> private resources in the OpenAI API. This means that any user with just their JWT can exploit this security vulnerability and see all the files and conversations ever created with your OpenAI API key. This will cause infringements on the data and privacy of your end users. The following frontend code will call the OpenAI API <a href="https://platform.openai.com/docs/api-reference/files/list" rel="noopener noreferrer">list files</a> end point which will return all the files ever uploaded regardless of the user that uploaded it: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">supabase</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">supabase-js</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">jwt</span> <span class="o">=</span> <span class="nx">supabase</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nf">session</span><span class="p">().</span><span class="nx">access_token</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">opair</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">"</span><span class="s2">https://functionroute.yourcloud.com/v1/files</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">GET</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authentication</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">jwt</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({...}),</span> <span class="p">});</span> </code></pre> </div> <h2> Building a safe integration </h2> <p>To prevent the vulnerabilities laid out thus far, you should implement the following safeguards in your backend:</p> <ul> <li> <strong>Implement Authentication</strong>: Require valid credentials (e.g., token-based auth) so you know exactly who’s accessing your services.</li> <li> <strong>Track Usage and Limits per User</strong>: Prevent users from racking up high API costs by restricting the number of requests per minute per user.</li> <li> <strong>Enforce Secure Permissions:</strong> Ensure only the user who created a resource can view or modify it to protect against unauthorized access or data leaks.</li> </ul> <h2> Building a simple integration </h2> <p>Implementing proper integration with the OpenAI API in a backend can be time-consuming. A Backend-as-a-Service (BaaS) like Backmesh abstracts this complexity handling authentication, rate limits and permission enforcement for you—without requiring you to build or maintain a backend. The idea is straightforward:</p> <ol> <li> Store your private OpenAI API key securely in a protected configuration that users cannot see. <ol> <li> Process requests with permissions, rate limiting and authentication</li> <li> Your front end sends a request to the Backmesh endpoint on behalf of your user.</li> <li>The endpoint verifies this request belongs to one of your users, the user hasn't gone past their limits (e.g. 5 requests per min) and the user is not requesting resources it did not previously create. Only if all of this is true, Backmesh attaches your secret API key from the secure store to the request.</li> <li>The request goes to OpenAI, then Backmesh returns the OpenAI API response to your front end with streaming support.</li> </ol> </li> </ol> <p>The resulting client-side code is described below and is taken from one of our <a href="https://dev.to/docs/supabase">tutorials</a>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">openai</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">supabase</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">supabase-js</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">BACKMESH_PROXY_URL</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">https://edge.backmesh.com/v1/proxy/gbBbHCDBxqb8zwMk6dCio63jhOP2/wjlwRswvSXp4FBXwYLZ1/v1</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">jwt</span> <span class="o">=</span> <span class="nx">supabase</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nf">session</span><span class="p">().</span><span class="nx">access_token</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">client</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OpenAI</span><span class="p">({</span> <span class="na">httpAgent</span><span class="p">:</span> <span class="k">new</span> <span class="nc">HttpsProxyAgent</span><span class="p">(</span><span class="nx">BACKMESH_PROXY_URL</span><span class="p">),</span> <span class="na">dangerouslyAllowBrowser</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">jwt</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>From your perspective, there’s “no backend” to manage—no servers, no DevOps, no complicated configurations. But under the hood, Backmesh is a secure middleman between your front end and OpenAI API. Read more about Backmesh's security considerations <a href="https://dev.to/docs/security">here</a> or check out the open source code on <a href="https://github.com/backmesh/backmesh" rel="noopener noreferrer">Github</a>.</p> webdev openai programming react