if you're using Firebase for authentication & authorization. Otherwise you're just obfuscating your original API which is generally pointless if someone really wants your data.
Haven't used Firebase yet. So, have to look into how auth works there.
Follow-up question, Wayland not adopting those "amenities" is just a feature that is missing right now or it's impossible to adopt them in Wayland?