Reputation:
Will decompiled version of an apk file be allowed by Firbase App Check?
Firebase App Check is a wonderful feature. It ensures that only the requests made from my app will be allowed. But what will happen if my app is decompiled, the source code is modified a bit, and a new APK is created? Will the requests made from that version be allowed by Firebase App Check?
Upvotes: 1
Views: 252
Answers (1)
Reputation: 2318
The basic steps for Firebase App check are as follows:
Register your apps to use App Check with the SafetyNet provider in the Project Settings > App Check section of the Firebase console. You will need to provide the SHA-256 fingerprint of your app's signing certificate.
And as you can since you would be providing the SHA-256 fingerprint from your device, if someone does decompile your app and a new APK is created, the fingerprint won't match unless it is done by someone specifically from your device.
I think you will be fine in most cases. You can read more here
https://firebase.google.com/docs/app-check
Upvotes: 2
Related Questions
- How to secure an APK file to protect it from decompilation
- Is it possible to decompile an Android .apk file?
- Prevent decompiling android apk
- Firebase: Can decompiling the apk give access to my data and files?
- Can I access the Firebase database using the REST API if I reverse engineered an apk?
- can I decompile a signed and installed android app?
- Will encryption of an apk file prevent hackers from decompiling it?
- Decompiling of .apk files
- Android - don't want to decompile my apk file
- apk file that cannot be decompiled