AngularM
Reputation: 16618
Do I need to store the Firebase url in a server side secure location? or does the Firebase security cover this?
I'm basically asking, should I store the Firebase url in the client side e.g. the browser?
Hackers can then easily take that. But if my security in Firebase is good enough, should it be okay to store it client side?
Upvotes: 0
Views: 58
Answers (1)
David East
Reputation: 32604
The URL is your interface with the Firebase Realtime Database, it is okay to expose it publicly as long as you have proper security rules.
If a malicious user gets ahold of the URL and tries to delete or save data, your security rules will keep them at bay.
Upvotes: 1
Related Questions
- How do I solve: Error: Failed to list Firebase projects. See firebase-debug.log for more info
- Firebase cloud function "Your client does not have permission to get URL /200 from this server"
- What is the secure way to add Firebase (Firestore) queries to client side code for React Native?
- Can someone please explain to me why we need Firebase security rules when I can literally write rules in my client code?
- Access URL Parameters In Firebase RTDB Security Rules
- In Firebase security rules how can you stop hackers running a script for signup to your website? bare in mind I need them to be able to signup
- How to implement firebase server side security
- How can I secure Firebase with an all client-side implementation?
- Create users server side via simple login on firebase