Should I hide firebase api keys into backend? Not due to data security but project cloning issue

Question

Can someone help me with firebase security questions?
Here\'s what I was try to figure out:

I understand that to let a client side interacting with my firebase

Answer 1

There is no need to try to hide your API key. It is essentially public information, and a determined hacker will be able to get a hold of it no matter how hard you try to obfuscate it.

A hacker doesn’t really stand to gain very much by getting your API key. It’s just a unique identifier for your project. If you want to secure your data in Realtime Database and Cloud Storage, you should use security rules along with Firebase Authentication to protect access to only the users who should have that access.