πŸ–Œ
πŸ–Œ
πŸ–Œ
πŸ–Œ
Firebase+React_Notes
Search…
πŸ–Œ
πŸ–Œ
πŸ–Œ
πŸ–Œ
Firebase+React_Notes
Firebase React Notes
React + firebase
Firebase - Create React app setup
Firebase React context
Firebase function local dev react
React firebase hooks
Multiple ENVs
Multiple ENVs
Manual setup
Terraform
Firestore
Firestore
Firestore data model
associated Firebase data with Users
Firestore write
Firestore - read
Firestore update
Persisting data offline
Importing json
Auth
Auth
Firebase UI
Firebase Auth with React
Linking auth accounts
Twitter sign in
Google sign in
Database Auth
Custom claims
Limit auth to certain domain only
Custom tokens
Cloud Functions
Cloud Functions
Set node version
Set timeout and memory allocation
Call functions via HTTP requests
HTTPS Callable
Separate Cloud Function in multiple files
Slack integration
Twilio firebase functions
ffmpeg convert audio
ffmpeg transcoding video
Storage
Security
Create
Delete
Uploading with React to Firebase Storage
Getting full path
Firebase `getDownloadURL`
Saving files to cloud storage from memory
Hosting
Hosting
Hosting + cloud functions
Firebase Admin
Firebase admin
Firebase analytics
Firebase analytics
Google App Engine
Google App Engine
GCP App Engine + video transcoding
STT
STT + Cloud Function + Cloud Task
Other
CI Integration
Travis CI integration
Github actions integration
Visual code
Visual code extension
Electron
Firebase with electron
Pricing
Pricing
Testing
Unit testing
Privacy and Security
Privacy and security
Useful resources
links
Firebase Extensions
Firebase extension
Chrome Extension
Firebase in a chrome extension
Cloud Run
Cloud Run
Powered By GitBook
Custom claims
On the backend you can use custom claims to group user's permissions
What I'd recommend is to separate the auth from the access by using Custom Claims. Allow any one to create a user, but attach a Cloud Function to the user create event. If the user matches one on the white list, set a custom user claim (this just launched recently!)
Finally, in your rules, check for that use property before giving access to the data:
1
{
2
"rules": {
3
"adminContent": {
4
".read": "auth.token.admin === true",
5
".write": "auth.token.admin === true",
6
}
7
}
8
}
Copied!
Auth - Previous
Database Auth
Next
Limit auth to certain domain only
Last modified 2yr ago
Copy link