I'm building a web app with firebase that can't have an authentication system but still needs to access sensitive data in a firestore document after being given a password. I was thinking about making the password the name of the document, but then I realized this is not secure because someone could query all the documents in the database.
Is there a way to use firebase rules or some other workaround such that the only way to read a document is to have a certain code?
Aucun commentaire:
Enregistrer un commentaire