The problem is that the app run perfectly with full access !!, i enter the name clock to "Read value FB" and i got the firstname even if the rules (Read/Write) is set on False ?
Hi Dora,
Thks for your reply.
That's really strange.
I've started a new project, copy screen1, add a refresh extension Firebase with, put no FB Token :
And copy the same blocks, let rules False in FirebaseConsole
Result : The APP read the datas and give me the firstname ...
Maybe i should create a newrealtime database ?
Hi,
Developer :
Yes. The 1st textbox is the TAG, the 2nd is the value in return (firstname)
Ex: if i enter "Dupont" and i click READ FB, then i got "Paul"
Dora :
Yes, i've published and tested after.
Due to the fact that i've also used this TEST FIREBASE for the Authentication, for trying differents options on the console ... maybe starting from scratch with a new FIREBASE will be better
Hi Developper,
Thks, i can do the changes in order to improve the request to firebase but it do not explain the security problem. I wrote the block very quickly since the objective wasn't to get the datas in a clean way but more to test the security
Hi TIMAI2,
I will do that and come back
Hi TIMAI2l,
I did the restart as you mentionned. I've also changed "Paul to David" and now i've the 'expecting' message : "FirebaseError, Permission denied"
and if i change the rules to 'true,true' => Access and 'False,False' => No access
Congratulation !
I don't understand anything but it correct now ?!
I believe "something" got lost or stuck along the way, and you were working with cached and not live data and settings.
A refresh... (the good old turn it off and on again) got everything working as it should. The companion app in particular (in my experience) often needs a good refresh to get itself correctly set up with the newest settings/blocks/components/files in assets - and especially extensions.
Thanks a lot.
i will now continue with the extension FirebaseAuth in order to give Read/Write access Firebase only to User that have authenticated.
I will open another post in case of question
Rgds