Breeding: android - Firebase security -

Thursday, 15 September 2011

android - Firebase security -

i'm developing android app.

i want instantiate firebase object kind of secret it's able used on code.

now, can access , modify data. how avoid that?

i tried on rules:

{ "rules": { ".read": true, ".write": "auth == 'somepass'" } }

but set string on reference?

how that?? don't want authenticate users, application.

take @ : https://www.firebase.com/docs/security/api/rule/auth.html

you have generate token in server side authenticate user.

if utilize node.js, have :

var firebasetokengenerator = require('./firebase-token-generator-node.js'); var tokengenerator = new firebasetokengenerator(your_firebase_secret); var token = tokengenerator.createtoken({'passkey': 'somepass'});`

and then, in security configuration :

{ "rules": { ".read": true, ".write": "auth.passkey == 'somepass'" } }

if don't have server, can utilize simple login. see : https://www.firebase.com/docs/web/guide/user-auth.html

i hope helps !

android firebase

Breeding

Thursday, 15 September 2011

android - Firebase security -

No comments:

Post a Comment