Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Firestore security rules #36

Open
4 tasks
tomatocat opened this issue Jul 17, 2020 · 0 comments
Open
4 tasks

Update Firestore security rules #36

tomatocat opened this issue Jul 17, 2020 · 0 comments
Assignees
@AnthonyOdum
Labels
priority: high
Milestone
Final Presentation

Comments

@tomatocat
Copy link
Collaborator

Is your feature request related to a problem? Please describe.
For beginning development, we had read-write access for everything in Firestore granted to all users. Maybe we do not want that in production.

Describe the solution you'd like

  • Stored credential can only be accessed by backend
  • users can only update their own user profiles
  • users cannot grab other peoples' emails
  • users should not be able to update games out of turn
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@AnthonyOdum AnthonyOdum

Labels
priority: high
Projects
None yet
Milestone
Final Presentation
Development

No branches or pull requests
2 participants
@AnthonyOdum @tomatocat