Firebase - What is the API Key

Question

In Firebase, when we sign up , it gives us an API key for each firebase Url. But where is it used in a consuming application? The fireBase API does not provide any means to supply API Key.

Security : What prevents anyone to go ahead and write any object to the given firebase Url? How is the authorization managed?

Answer 1

Follow these steps:

1. Login to Firebase Console
2. Select your project
3. On the top left corner, you'll find Settings icon, click on Project Settings

4. For Web API key, you can find in General Tab

5. For Server Key, you can find under Cloud Messaging Tab

Answer 2

You can generate your api key at https://console.developers.google.com/apis/credentials?project=[YOUR-PROJECT]

Replace [YOUR-PROJECT] with your proyect ID.

Find more information at https://support.google.com/cloud/answer/6158862

regards.

Answer 3

updated the links to the new Firebase website

Your question is very timely, as Firebase just announced its full security suite a few days ago.

There's a nice intro screencast and docs here: https://firebase.google.com/docs/database/security/

The "API Key" is the old name for a Firebase Secret. This is used to generate Authentication Tokens to prove to Firebase who users are. You can see docs on authentication here: https://firebase.google.com/docs/auth/