Security in Firebase is handled by setting JSON like object inside security rules.
Security rules can be found when we click on Database inside side menu and then RULES in tab bar.
In this chapter we will go through couple of simple examples to show you how to secure Firebase data.
Security rules can be found when we click on Database inside side menu and then RULES in tab bar.
In this chapter we will go through couple of simple examples to show you how to secure Firebase data.
Read and Write
Next code snippet defined inside Firebase security rules will allow writing access to /users/'$uid'/ for authenticated user with the same uid, but everyone could read it.Example
{ "rules": { "users": { "$uid": { ".write": "$uid === auth.uid", ".read": true } } } }
Validate
We can enforce data to string by using the following example.Example
{ "rules": { "foo": { ".validate": "newData.isString()" } } }This chapter only grabbed the surface of Firebase security rules. The important think is to understand how these rules work so you can combine it inside the app.
No comments:
Post a Comment