Break Up Firebase Security Rules Into Different Actions Depending on Operation Performed

Currently our Firebase Security Rules aren't as secure as they could be. When it comes to tasks, we are comparing the request's user on the task to the requests auth id. If someone intercepted this request and changed the ids here they could get away with it.

In this lesson, we'll go through our security rules and create a different set of security rules depending on the action the user is performing. For tasks specifically we will check the documents user id against the request user id.

We'll take things a step further as well and write different rules if a user is trying to create, delete, or update a task document.

Break Up Firebase Security Rules Into Different Actions Depending on Operation Performed

Share this video with your friends

Course

Build Full Stack Web Applications with Angular and Firebase