Separate front-end development, how to hide Token? at the front end

A newcomer to php development has recently come into contact with api development. As a result, there is a doubt that if the front end needs to pass a token into the api, it seems that it is bound to leave the token on the front end page. Won"t other people be able to see token?

have you ever encountered a similar problem, or how did you solve this problem in actual development?

Jan.20,2022

token is only to prevent duplicate submissions,

is not a security mechanism


Why do other people know the token? of "others"
after the basic authentication is passed, the token, is generated and the expiration time is added, and the authentication is re-authenticated after the expiration.


< H1 > HTTPS < / H1 >
MySQL Query : SELECT * FROM `codeshelper`.`v9_news` WHERE status=99 AND catid='6' ORDER BY rand() LIMIT 5
MySQL Error : Disk full (/tmp/#sql-temptable-64f5-1e53af4-43f0a.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
MySQL Errno : 1021
Message : Disk full (/tmp/#sql-temptable-64f5-1e53af4-43f0a.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
Need Help?