Tools: Firebase
Problem: Security with fully client-side code and publishing unique identifiers
I am really scratching my head about how to create a system for a unique user ID for basic user interactions.
Common examples are direct messaging friend, adding a new contact ect ...
A unique identifier must be sent to establish these types of connections.
The reason I stumbled like this is because, in my mind, I do not suppose that uids are exposed by users (for security reasons this seems fragmentary) , and therefore I would have to give the user several unique identifiers (one for the group or for of each connection, ect).
So am I mistaken and can I use uid while I set security rules? I am sure there should be a very simple answer to this question.
source
share