I have firebase http cloud function. I removed the permission Principal "all users" in it and added the service account project-id@appspot.gserviceaccount.com

Then I created a subscription, in which I specified the url of the function as a target (https://us-central1-project-id.cloudfunctions.net/pubsubPsaWorker/push), and also enabled authentication.
In the account field, I selected project-id@appspot.gserviceaccount.com
in the audience field, I also indicated https://us-central1-project-id.cloudfunctions.net/pubsubPsaWorker/push.

I made sure that the subscription sends requests with req.headers. authorization with a real token.

But when the subscription sends requests, I do not see any data in the function logs (which means that IAM does not miss requests from the subscription)

Also I tried doing curl -m 550 -X POST https://us-central1-project-id.cloudfunctions.net/pubsubPsaWorker\
-H "Authorization: bearer $(gcloud auth print-identity-token)" \
-H "Content-Type: application/json" \
-d '{}'
And in this case, I got a successful response and saw the logs.
Who knows what could be the problem?

The service account has the cloudFunction Invoker role.