We are using angular for front-end and Salesforce is being used for maintaining database. REST APIs have been written on Salesforce to communicate and fetch data to front-end. SSO OAth settings are also being used in Salesforce. This results in exposing queries on browser console. I need to know, how secure is this setup. Since Salesforce query calls are being exposed on browser-console, will the database become accessible with minimal efforts.
If You are Sending querys with a Salesforce logged user. I think all is Ok.