Filesystem?

[arjunmenon]

Hey Does this allow accessing the filesystem?

If that is the case, there should be a form of authentication. Maybe a key/value token, allowing limited access. Also an option like accessing types of files, images, mp3s, etc only should be allowed.

[bykof]

No this doesn't allow filesystem access... because you define HTTP endpoints which will be called. If you want to serve files or other things you can do this with cordova-plugins or cordova-api only. So in conclusion, there is no need for protection.