🚨

Critical Security Migration

The luigisbox.com domain is compromised. Immediate action is required.

1. Update API Base URLs

Replace the base URL for all API requests (Search, Recommendations, Analytics):

https://live.luigisbox.com
➡️ https://live.luigisbox.tech

2. Replace Frontend Script

The .com script is no longer safe. Replace it with the secure version immediately:

[OLD - Delete from site]
<script async src="https://scripts.luigisbox.com/LBX-123.js"></script>
[NEW - Secure Version]
<script async src="https://scripts.luigisbox.tech/LBX-123.js"></script>

3. Update CSP & Firewalls

If you use a Content Security Policy, whitelist the new domain to prevent the browser from blocking the connection.

            script-src https://scripts.luigisbox.tech;

            connect-src https://live.luigisbox.tech;

⚠️

Emergency Action: If you cannot update the code right now, remove the existing Luigi's Box script until the migration is complete to prevent unauthorized code execution.

Support: support@luigisbox.net MODIFIED: 12/17/2025

Integration Best Practices

Optimizing your autocomplete implementation is crucial for a fast and responsive user experience.

Avoiding Latency

Direct Implementation (Recommended)

If you implement the JSON API directly, we strongly recommend consuming it directly from the HTML page (client-side).

Why? This avoids the latency of proxying requests through your backend servers.
Security: The API is designed for public access. No sensitive information (like private keys) is required to call it, only your tracker_id.

Avoid Proxying

Do not proxy calls to Luigi's Box Autocomplete API via your backend servers. This introduces unnecessary network hops and delays the response, making the search-as-you-type experience feel sluggish.

Performance Optimization

DNS Prefetching

To avoid the DNS lookup penalty on the very first autocomplete request, we recommend adding a DNS prefetch instruction to your HTML code.

Add the following code anywhere in your <head> tag:

html

<link rel="dns-prefetch" href="//live.luigisbox.com">

Fetch Only Necessary Fields

To reduce payload size and improve parsing time, only request the fields you actually display in the autocomplete dropdown.

Use the hit_fields parameter to specify a comma-separated list of fields.

Example: hit_fields=title,price,image_link,url

Implementation Choice

Method	Pros	Cons
Autocomplete.js	• Plug-and-play • Built-in caching & analytics • Handles UI rendering	• Less UI customization flexibility
Direct API	• 100% UI control • Integrating into native mobile apps	• Must implement caching & analytics manually • Requires more development effort

Navigation