Am I Supposed To Edit The Google-services.json File?

- 1 answer

I got an email from Google that says:

We have detected a publicly accessible Google API key associated with the following Google Cloud Platform project

and they point at the api key inside my google-services.json file and at a url of someone hosting my apk.

The google-services.json file is just what I got when following the Firebase instructions and put it where it said to put it. So did I do something wrong?



No you are not supposed to edit it, you have to restrict it.

Note that if you are using Android Studio, you can get the signing report see this accepted answer here.