CSP and Firebase

Hi guys,

Regarding the CSP rules:

(the need to whitelist all the reachable domains), how can we manage to implement Firebase authentication for the users?

Firebase needs to access 2 urls that cannot fulfill the CSP policy:
https://securetoken.googleapis.com/v1/
https://www.googleapis.com/identitytoolkit/v3/

Has someone managed to find a solution ?
Thanks !

1 Like