How to properly use RESTful API for communicating with backend?Beginner question(security)

<p>Hello everybody,</p> <p>Just got in the amazing world of GO(previous experience was game making with C#).I am learning about how are websites operate at a deeper level since i always used WordPress.I wanna make a converter as a starter project.Simple page with a text form and a button.User enters the video url and then it sends it into the &#34;backend&#34;,which from what i found, a good way is using RESTful API for communication,the GO app downloads the video ,stores it in the Database, and returns a download link.Excuse me from my ignorance,but doesn&#39;t that give access to anyone use the same url and get the results,without using my website?How can i only allow my website(and maybe a mobile app,but that&#39;s for later)to access my api,so it doesn&#39;t get abused?</p> <p>Many thanks!,hope it&#39;s ok to post here,since i know it&#39;s not strictly about GO but hopefully some of you have gone through the same...</p> <p>Extra info if required:I have a VPS running with Ubuntu 16.04,with apache in port 80 for a wordpress site and the GO http server running at 8080 for the API.</p>