Is it safe to build REST API to capture data into a database?

A user needs to send us data weekly or monthly and I need to capture that data into a database to present it on a website. However, I do not want the user to have direct access to the data base.

So I was thinking of building REST API and capture the data into a database that user sends (instead of responding back to the request).

I am new to this field and wondering if this is a safe practice? If there is a better way, please let me know. Thanks!

Solution

Yes and as blur0224 said you should consider security for your REST API. I personnaly advise you to use a token based authentication (JWT, OAUTH2 etc...). So the user have to be authenticate and authorized to access your data base.

Post with REST API on Wordpress.com [Error 401, not allowed]
How to configure JSON deserialization options in .NET minimal API project
How to update array using PUT API request in Strapi
Using REST API in Python to run Workflows in Azure Purview
Conversion API Purchase Event does't work
Should PUT and DELETE be used in forms?
Workday: is there an API or other programmatic way to download the output files from an integration event?
How to find Bitbucket Account UUID?
Why is django-ninja PUT endpoint not using value from request body but instead is returning the default value for field to be updated (ModelSchema)?
CORS with spring-boot and angularjs not working
Restful FedEx Trade Document Upload API - Can't upload signature or letterhead images
Which datatype to use at JPA entity to store and retrieve date using java 8
Patch Request in Java Spring Boot nulls ManyToOne
Is it possible to update an existing Zimbra ZCS contact using the REST API?
What's the difference between REST & RESTful
VAT Checker Apps Script
Meteor server api using iron router returns HTML not the response
How to return global object from a Rocket REST API?
How to map this Json with rest template spring boot
Office 365 REST API - Creating a Contact gives me HTTPCode 400
Guidance for writing a wrapper for a REST API
PayPal REST API: Search by BUYER Transaction ID
Django rest framework where to write complex logic in serializer.py or views.py?
REST and spring-mvc
Cookie in Thunder Client VS Code extension
How to write a generic handler in Go?
How to make a script to automate taking the GET data from my wordpress site and POST to another server
How do you set a scenario when doing a restful call in Yii2 to return certain fields
Spring - checking path variable for null at controller
How to transform Model-View-Presenter architecture to WebAPI?