Firebase Rules

Firebase has a security architecture based on path rules for Realtime Database and Storage. By default everything is blocked for securiting reasons. So we had to configure exactly what should be shipped or not.

Learn more about Firebase security.

After creating your Firebase project you should apply the following rules to work with Firetask:

Firetask Database Rules

{
  "rules": {
    "users": {
      // grants write access to the owner of this user account
      // whose uid must exactly match the key ($user_id)
      ".write": "auth.uid != null",
      ".read": "auth.uid != null",
      ".indexOn": [
        "email"
      ]

    },
    "chat": {
      // grants write access to the owner of this user account
      // whose uid must exactly match the key ($user_id)
      ".write": "auth.uid != null",
      ".read": "auth.uid != null",
      ".indexOn": [
        "from",
        "to"
      ]
    }
  }
}

Firetask Storage Rules

service firebase.storage {
  match /b/your-app.appspot.com/o {  
    match /profile/{user}{
        allow read, write: if request.auth != null;
    }   
  }
}

results matching ""

    No results matching ""