Fixes #17
You can view the security issues in this report.
Solution
I removed the rule ".write": true from admins and users.
In addition, I removed the read rule from "/products/$p_id", since it was useless because of the ".read": true under products.
Please tell me if there is a problem with reading all the products.
Fixes #17 You can view the security issues in this report.
Solution
I removed the rule
".write": true
fromadmins
andusers
. In addition, I removed the read rule from"/products/$p_id"
, since it was useless because of the".read": true
underproducts
.Please tell me if there is a problem with reading all the products.
An analysis on the fixed rules can be seen here.