Please note that both keys should be kept confidential, using your API Key & Secret in a publicly available frontend application is therefore not allowed since this will expose both of your keys to the public granting everyone access to your account.