firebase-security Questions
5
Solved
We are using firebase with google authentication. We chose Google because our application makes Google API calls. We authorize these api calls with the access_token included in authorization payloa...
Smallpox asked 11/1, 2015 at 18:46
2
The Setup
I have a collection in Firebase Firestore that has the following fields:
(["active" , "created" , "description" , "displayName" , "expires&qu...
Xiaoximena asked 31/3, 2021 at 15:57
3
Solved
So I have an app where I have enabled google authentication in my firebase project. 25 people I know were authenticated. When I logged in the backend I saw atleast some 80 entries with some weird ...
Thoracoplasty asked 16/8, 2020 at 12:7
3
Solved
Given that the firestore rules structure allows for functions, is there some way to add debug logs to those rule-functions ? .. in order to verify that the function you expect, is in fact being cal...
Peyote asked 1/11, 2018 at 0:13
2
Solved
I am having difficulty trying to diagnose a particular rule in my firestore.rules file. See that question here for context.
Is there a way to debug the firestore.rules file and/or functions? I'm u...
Supersaturated asked 11/11, 2019 at 6:29
3
Solved
I have the following firestore structure, basically 3 collections
publicdata
protecteddata1
protecteddata2
I want to have protecteddata1 and protecteddata 2, and really the entire firestore datab...
Rosie asked 1/4, 2020 at 14:11
2
I am setting up security rules for my Google Cloud Firestore database. I am trying to allow deletion of a document only if its timestamp value is more than 30 days in the past using the following l...
Cypripedium asked 24/10, 2017 at 12:45
2
Solved
I am trying to set up a Firebase database that only I can write. So no user will have permission to write anything. But everyone will be able to read it.
However, I could not set up the rules for ...
Nev asked 20/1, 2017 at 20:25
4
Solved
I've been using Firebase for quite some time, but I only now decided to really look into the security rules.
My question is, how safe is "auth !== null"? Yes, I realize that this means that only ...
Cally asked 19/7, 2017 at 15:41
2
Using firebase_messaging: ^13.0.2 I'm unsure how to force a refresh of the FCM token... without logging the user out. I noticed it refreshes when signing out + back in.
According to google docs the...
Fury asked 13/10, 2022 at 4:2
2
Solved
I'm trying to secure my Firebase (google cloud storage) files based on user data. In firestore, I use a rule based on getting database content (look up the uid in users table and match a field) and...
Flitch asked 27/2, 2019 at 16:47
12
Solved
I keeps getting message error from firebase link saying 400 error with my firebase storage upload in my react project when trying to upload photo... everything were working fine before and uploads ...
Tumbleweed asked 11/5, 2018 at 12:27
3
Can we use Firestore data to grant or restrict access to files hosted on Firebase Cloud Storage?
Exemple of what I would like to use as Firebase Security Rule
allow write: if get(/databases/mydbn...
Jijib asked 21/10, 2017 at 9:46
0
I am working on a project that was created without any security and I am trying to lock things down to acceptable levels.
It's an Angular/Ionic app using AngularFire.
Issues started when locking do...
Hamstring asked 9/9, 2022 at 23:38
2
Solved
I want to have a dynamic control on storage rules from database. I mean it should check database nodes to allow read or write.
But I cannot find a way.
For example
match /files/{fileKey} {
allo...
Cisalpine asked 22/1, 2018 at 10:45
5
Solved
I am using firebase (with Angularfire) for an html5 phone app. The user inputs only their email in the start screen, and then, depending on whether that email is already registered or not, the user...
Kaliope asked 27/2, 2014 at 19:33
10
Solved
I'm relatively new to coding and am having trouble.
I have this code to send data to firebase
app.userid = app.user.uid
var userRef = app.dataInfo.child(app.users);
var useridRef = userRef.chil...
Wolsey asked 24/5, 2016 at 3:10
4
Recently I have been using firebase for my new app. Since you can define your own rules on firestore, I wanted to try that out.
To test these rules I am running the firestore emulator. When I try ...
Panfish asked 8/12, 2019 at 13:6
2
Suppose I have this structure in a firestore database:
collection[
document: {
x: 'x',
y: 'y'
}
]
and I have this firebase rule in place:
service cloud.firestore {
match...
Emersed asked 30/10, 2017 at 9:40
3
Solved
I recently received an email from firebase telling me that my realtime database has insecure rules. These are the rules that I have set:
{
"rules": {
".read": "auth != null",
".write": "auth !=...
Commute asked 18/7, 2018 at 0:56
5
Solved
I'm using Firebase SimpleLogin to enable Email / Password authentication. Creation of users and subsequent login is all working fine. However, whenever I leave the app (even if only for a few secon...
Glut asked 7/3, 2014 at 23:7
2
My auth token includes a stores property. This property is an Array that includes ID's of all stores the user is allowed to access. For example:
stores: ['abc123', 'def456'].
Now, in my Firebase Re...
Twylatwyman asked 13/4, 2022 at 8:46
1
Solved
I just update my dependency to "@firebase/rules-unit-testing": "^2.0.0"
and it breaks my code. my code was
import * as firebase from "@firebase/rules-unit-testing";
f...
Nakano asked 5/9, 2021 at 5:1
2
Solved
Im thinking of using firebase real time database but there are a few things im afraid of:
High surprise bills
System failure
There are a few things im thinking of doing:
Layer 1: CloudFare CDN i...
Seals asked 8/3, 2022 at 19:33
3
In the Firestore security rules, is it possible to check certain document fields when using a list query?
Using Angular, I want to retrieve a single document from the userprofiles collection using...
Richmound asked 20/4, 2018 at 22:24
© 2022 - 2025 — McMap. All rights reserved.