Comment by londons_explore

> A key bundled into an app is extractable from the shipping binary, and anyone who extracts it can make requests billed to your account. Use .apiKey for development only, and switch to a proxy before release.

I don't like this model. Then all the user data is visible to the proxy.

Far better would be some kind of micro payment architecture where a wallet is on the users device and coins are attached to each request.

We just need to live in the alternate universe where micro payments succeeded.