I started yesterday the refactoring of one of the core functions of  DeckDeckGo by declaring a new  Firebase Cloud Functions, which can be triggered via  HTTP requests.

As I was looking to protect its access, in order to avoid sneaky requests, I followed one of my  previous blog post to protect it with the help of a bearer.

Once I tested this first step of the feature, I actually noticed that it was not the correct solution for my use case. I rather had to grant the access using the users tokens.

#web-development #firebase-cloud-functions #javascript #firebase