I have a simple React Native app that I'm building with Expo, using Firestore as it's database. There's no user registration, nor are there any user writes/updates to the database - it's simply displaying information to anyone who installs the app.
I want to protect my database from abuse. Initially I was going to set up an express server to serve the API key, but I've read on other posts that this is basically redundant.
So my intention now is to configure App Check so that only my app can access the database.
Here's where the confusion comes in - I registered my app on Firebase as a web app, and now when I try to set up App Check, it only offers reCAPTCHA as way of securing my project. My understanding that this will only secure web pages, and not android/iOS apps.
So how do I set up a cross-platform app on firebase so that it can be secured across all platforms?
As a side note - I set up my project as a web app because that's what I thought I was supposed to do when trying to build a cross-platform app with Expo.
