Flamelink supports Firebase App-check with reCAPTCHA v3 capability for increased security. If your project utilizes this functionality, you can simply provide the required details outlined below.
How to enable App-check for your Firebase project with reCAPTCHA v3
Firebase provides a detailed guide on enabling and setting up your site for reCAPTCHA here.
It is important to ensure that you are using v3 of reCAPTCHA and to add the app.flamelink.io domain in addition to your list of the allowed domains.
(Please note: Settings can take up to 30 minutes to take effect)
Providing Flamelink with your App-check public key
It is safe to provide Flamelink with your public key since the use of the public key is tied down to the specified domain during the setup.
Finding you key
Once you have set up your keys, you can use the "COPY SITE KEY" option provided in the reCAPTCHA console.
New Flamelink Projects
If App-check is already enabled for your project, you will need to provide the App-Check Public Key when adding your Firebase project to Flamelink.
It is important to note that your Public key also requires you to specify your "appId" in the Application Code section.
Existing Flamelink Projects
If you would like to tighten up the security of your app and your project is already linked to Flamelink, you can simply update the project details for any of your projects (given you are a project owner).
Navigate to your "Project Details" section under the "Manage Project" page and
select the "Firebase Config" panel.
Complete the App ID (provided in Firebase along with your Web App details) and App Check Site/Public Key, then select "Update".
That's it, you can now safely use your Firebase instance only on the specified domains for enhanced security.