What is the name of the domain?
modernmedlifecom
What is the issue you’re encountering
Tips for safeguarding API endpoints from abuse (what else besides DNS proxy setup?)
What steps have you taken to resolve the issue?
Hello Cloudflare Community,
I’m currently working on enhancing the security of my Firebase Cloud Functions to prevent abuse and would love some input from the community. Here’s a brief rundown of what I’ve implemented using Cloudflare:
What I’ve Done So Far:
DNS Setup: Configured Cloudflare DNS with a CNAME for my function endpoints, ensuring all traffic goes through Cloudflare.
Firebase Integration:
Implemented Firebase Authentication for functions that require user verification.
Questions for the Community:
What additional best practices should I consider for Cloudflare and Firebase integration? My fear is waking up one morning to a bill of thousands of dollars.
I’m looking forward to any tips or insights you might share. Thanks for your help!
Was the site working with SSL prior to adding it to Cloudflare?
Yes
What is the current SSL/TLS setting?
Strict (SSL-Only Origin Pull)