This is what Google suggests in the docs http://code.google.com/apis/maps/documentation/javascript/tutorial.html#api_key
"By default, a key can be used on any site. We strongly recommend that you restrict the use of your key to domains that you administer, to prevent use on unauthorized sites. You can specify which domains are allowed to use your API key by clicking the Edit allowed referrers... link for your key." Just tried this out. The result was that I'll get this alert when I call one of my map pages: "Google has disabled use of the Maps API for this application. The provided key is not a valid Google API Key, Bla blah..." My browser is not allowed to give away the referrer. This is for (my own) security resons and to protect (my own) privacy. So if I restrict my maps only to the referrers of the domains they are in use not a single map would work for me. Taking the referrer is inadequate and not reliable - as Google surely knows. -- You received this message because you are subscribed to the Google Groups "Google Maps JavaScript API v3" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-maps-js-api-v3?hl=en.
