drautb
commented
9 years ago Perhaps the tests could all run against a test user, one that could not collide with the existing users: test:123. (test will never be a valid login provider) Once tests were finished, the test user's data could be cleaned up.
Firebase security rules can be tested manually via the Forge simulator. According to this thread, the same interface the simulator uses can be used programmatically.
I'd like to have a set of tests that ensure the security rules are working as I expect them too. However, I'm not sure what the cost will be. The main question I have is about data. How can I test the rules against a test dataset without having to remove production data? Let test data live along side prod data? :/