Hey, I’ve set up Cloudflare Tunnels with extra authentication for remote access to an HASS instance, but the extra layer is causing issues with mobile app updates - webhooks don’t connect in the background or something similar.
I’ve seen advice to unrestrict the webhooks endpoint and remove the extra authentication layer for the
/api/webhooks/*. (or only for each mobile app) (Source)
Is this safe? I am at the understanding that the webhooks endpoint is POST/“input” only.
HTTPS is in place and enforced.