如果收到Firebase安全规则信函,我该怎么办?
需要做什么 规则:如果收到Firebase安全规则信函,我该怎么办?,firebase,google-cloud-firestore,firebase-security,Firebase,Google Cloud Firestore,Firebase Security,需要做什么 规则: rules_version = '2'; service cloud.firestore { match /databases/{database}/documents { // This rule allows anyone on the internet to view, edit, and delete // all data in your Firestore database. It is useful for getting //
rules_version = '2';
service cloud.firestore {
match /databases/{database}/documents {
// This rule allows anyone on the internet to view, edit, and delete
// all data in your Firestore database. It is useful for getting
// started, but it is configured to expire after 30 days because it
// leaves your app open to attackers. At that time, all client
// requests to your Firestore database will be denied.
//
// Make sure to write security rules for your app before that time, or else
// your app will lose access to your Firestore database
match /{document=**} {
allow read, write: if request.time < timestamp.date(2020, 2, 15);
}
}
}
rules_version='2';
服务云.firestore{
匹配/databases/{database}/documents{
//此规则允许internet上的任何人查看、编辑和删除
//Firestore数据库中的所有数据。这对于获取
//已启动,但已配置为在30天后过期,因为
//使您的应用对攻击者开放。此时,所有客户端
//对Firestore数据库的请求将被拒绝。
//
//确保在此之前为你的应用编写安全规则,否则
//你的应用程序将无法访问你的Firestore数据库
匹配/{document=**}{
允许读写:如果request.time值得担心吗?如果不执行任何操作,这是否会中断应用程序?您的安全规则设置为在规则中指定的日期拒绝对数据库的所有访问:
timestamp.date(2020, 2, 15)