We have Laravel Application which uses Firebase push notification. For this we have placed "firebase-messaging-sw.js" file inside the public folder and it can access via URL and can view the "firebase-messaging-sw.js" file content.
This file contain following information
const firebaseConfig = {
apiKey: "XXX",
authDomain: "XXX",
projectId: "XXX",
storageBucket: "XXX",
messagingSenderId: "XXX",
appId: "XXX",
measurementId: "XXX"
};
Is it safe showing API Key and other information in public? OR what is the correct way?
