What Google Cloud APIs should I open access for authentication, Firebase real-time database service and Speech to text API
I am trying to secure my Android application. It uses authentication provided by Google Firebase, I also store some information using Firebase Real-time database, and finally, the main functionality of the app relies on Speech-to-Text API provided also by Google.
I believe all these, can be restricted to one application (package name and app signature).
I have been playing the classic exclusion experiment, by enabling then disabling one API at a time, I couldn't find the right combination, nor any hint, any restriction yields a complete "UNAUTHORIZED" access.
The only option running now is not to restrict at all.
For what I tried already:
- Firebase real-time database management API (enabled and disabled)
- Cloud pub/sub API (I remember I saw this somewhere talking about Speech to text or Firebase but I am not sure!!)
- Firebase management and Firebase installation APIs
Always with
- Cloud speech-to-text API
Without any restriction at all, all works great, Authentication/database and speech-to-text; The project connects well with the only first App level connection by providing package name and application signature hash.
I find solution myself, banal canonical approach:
- Set no restrictions at all except the first level (installation step) app package name and signature in Firebase.
- Run your application and try all functionalities as a normal user.
- Wait for statistics to be gathered and open this tab https://console.cloud.google.com/apis/dashboard?project=##PROJECTNAMEHERE##&show=all
- Set the right APIs to restrict for your Android/Web application.
Example
- Wait for more than 5 minutes, then test again. If it does not work come here x)
- Play Store warning: You must complete the advertising ID declaration before you can release an app that targets Android 13 (API 33)
- How to force landscape mode when using mobile browser (Unity webgl)?
- Facing an emulator issue in Android: "Error: Device is Already Activating"
- android core library compilation
- Why is an in used function still shown in usage.txt of proguard output?
- How to set a SpannableString to an EditText in an Android Material TextInputLayout?
- Android @Override issues
- " java.lang.ClassCastException: android.widget.Button[] cannot be cast to android.widget.Button" i find this issue in runtime in android kotlin
- Android FTPS Upload Issue: '425 Unable to build data connection: TLS session of data connection not resumed'
- error: cannot find symbol when building android app in flutter using pdftron
- how to add text to the video in android?
- How to keep bottom sheet in backstack when navigating forward?
- Custom Rounded Square Progress Indicator with Icon in Jetpack Compose for Android
- Room Can not Update or Delete Entity
- Why do I get a NullPointerException while calling the method?
- Trying to get first character from a string with multiple words where the first can be an Emoji (Android)
- Two-Way databinding in EditText
- DialogFragment with clear background (not dimmed)
- Android Reading PDF files from asstes folder
- Can't use DiceBears with Flutter NetworkImage
- Openweathermap API get HIGH and LOW temperature of the day
- Firebase onMessageReceived not called when app in background
- How do I add PHP files to my android APK file?
- Compiling Android project from terminal
- Action requested: Declare your Ad ID permission
- Module was compiled with an incompatible version of Kotlin. The binary version of its metadata is 1.5.1, expected version is 1.1.15
- Watch Face Format XML string split?
- Android WebView Not showing Anything
- Android WebView gray play button
- Android Paint: .measureText() vs .getTextBounds()