I'm building a project using socket.io and I wonder if the connection between the client using his browser and the server is secured.
When I say "secured" I mean - unable to fake messages using some client like Postman. The app is sending messages and it's important the messages will be reliable and will be sent only from the app.
If it's not secured by my definition, any suggestion on how to make it secured? How to minimize the chance or the damage to this behavior?