This repository was archived by the owner on Jan 4, 2023. It is now read-only.
Fix the Firebase security rules #11
Assignees
Labels
Comments
|
At a very high level: avatars: Only editable by that specific user and if they have profileScore >= 20. badges: read-only for the time being contests: need an organizer property. activeGames and properties are only writable by the organizer. playerPool is writable by registered users while the event state is "upcoming". when the event state is not "upcoming", it is only writable by the organizer. recentActivity writes should be a server-side operation triggered by a client function. standings: this will be a server-side write triggered by a client function. users: profileScore property needs to be removed as it has been migrated to badges. should be writable only by the user and readable by all. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
No description provided.
The text was updated successfully, but these errors were encountered: