# API Key restrictions

So you have generated your key successfully. However, there are still a few other things you need to set up, like security to prevent anyone else misusing your key, as well as setting a budget so that you won't be charged more than you can afford.

Now the API key is generated. To avoid misuse, you need to set in [Google APIs](https://console.developers.google.com/apis/).

Once inside the site → Click **Credentials.**

![](https://sl.storeify.app/images/userguide/gma7.png)

Here you can see the new API key. → Click the pencil icon ![](https://sl.storeify.app/images/userguide/pencil_icon.png) to edit it. 

![](https://sl.storeify.app/images/userguide/gma8.png)

Now in the API key settings site, there are some adjustments that need to be done.

Firstly, you need to change the key name  - as a general rule, it is named follow the site name or project name

In the **Key restrictions** you can see 2 tabs:

### **Application restrictions**

{% hint style="warning" %} <mark style="color:red;">**Note: If you use this tab, you need adding our app domain:**</mark> [<mark style="color:red;">**https://sl.storeify.app**</mark>](https://sl.storeify.app/*)<mark style="color:red;">**/\*, it is required.**</mark>
{% endhint %}

Select the option **HTTP referrers (web sites)** and enter the website name in the field. Use the format \*.[example.com/](http://example.com/). Any string can replace the asterisk, means that is even for subdomains. Also, you need adding our app domain: <https://sl.storeify.app/*> or \*.storeify.app/\* (the example image below)

<figure><img src="https://3193615300-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-MbGA3WnXKJXk8zrgkrt%2Fuploads%2FzeIlZ61r3lvznE7LpkOL%2F2023-03-17_145740.png?alt=media&#x26;token=4cf63af3-be1c-47fd-989c-a2b668d38d1d" alt=""><figcaption></figcaption></figure>

### **API restrictions**

Choose the services that are enabled for this API key.

→ Click **Save**