Blogs/Articles/Talks/Podcasts

Firebase - Why Firestore Encourages Bad Security?

Exadra37

Exadra37

Firebase - Why Firestore Encourages Bad Security?

What is Firestore?

Firestore is one of many products in the Firebase product line. Firestore is a document-based NoSQL database. Firebase Auth integrates with Firestore to provide authentication/authorization functionality.

Why Firebase?

The benefit of using Firestore is that developers don’t have to deal with the hassle of managing servers, creating a backend, or scalability. All of that is handled by Firebase. As such, Firestore is often used by frontend developers.

Conclusion

Firestore is fundamentally flawed. By eliminating the logical layer, Firestore makes it nearly impossible to use it securely. Firestore security rules are an inadequate band-aid solution and cloud functions defeat the purpose of using Firestore.

There are very few situations where Firestore will be an adequate solution. I’d only recommend using it only extremely small and simple applications or mock applications, but even so, you may run into security limitations.

View thread on forum
#web-development#android/security#ios#android-development#ios-development#android-security#firebase#firestore#ios-security#web-security#app-security#web
1 901 0

Popular General Dev topics Top

Devtalk
General Dev Chat

HELLO WORLD (Introductions thread!)
Hello Devtalk World! Please let us know a little about who you are and where you’re from :nerd_face:
#community
476 5521 111
New
Devtalk
General Dev Chat

What dev-related stuff have you been up to?
Reading something? Working on something? Planning something? Changing jobs even!? If you’re up for sharing, please let us know what you’...
#community
1016 16836 371
New
justinjunodev
General Dev Chat

Post Your Workspace
Figured this would be a cool topic and maybe provide some inspiration for those who are just starting to work from home. Feel free to sha...
#office#desk#setup
34 1832 13
New
brentjanderson
Hardware

Moonlander Keyboard (Mechanical) (Ergonomic) (Split) (Ortholinear)
Bought the Moonlander mechanical keyboard. Cherry Brown MX switches. Arms and wrists have been hurting enough that it’s time I did someth...
/keyboards#hardware#moonlander#mechanical-keyboards#ortholinear#ergonomic
212 14614 90
New
AstonJ
General Dev Chat

Which language or framework do you want to learn next?
Curious to know which languages and frameworks you’re all thinking about learning next :upside_down_face: Perhaps if there’s enough peop...
#community#learning
236 5547 90
New
Rainer
General Dev Chat

Do you have any (non-dev) hobbies?
Not sure if following fits exactly this thread, or if we should have a hobby thread… For many years I’m designing and building model air...
#community
200 3360 78
New
AstonJ
General Dev Chat

Digital Nomad Developers
Do we have any digital nomads here? Anyone fancy it? If so, which countries would you consider? I’ve been toying with the idea for a wh...
#digital-nomads
57 1865 23
New
First poster: OvermindDL1
In The News

Using Zig to Build Native Lua Scripts
Using Zig to Build Native Lua Scripts. Using Zig to Cross compile a Lua script for multiple arches
cone.codes
/zig/lua
9 1615 2
New
First poster: bot
In The News

The overengineered Solution to my Pigeon Problem
The overengineered Solution to my Pigeon Problem. TL;DR: I built a wifi-equipped water gun to shoot the pigeons on my balcony, controlle...
maxnagy.com
0 4160 0
New
CommunityNews
In The News

Review of Linux on Minisforum V3 AMD Ryzen Tablet
A Brief Review of the Minisforum V3 AMD Tablet. Update: I have created an awesome-minisforum-v3 GitHub repository to list information fo...
mudkip.me
#review#linux#amd
0 1252 0
New

Other popular topics Top

ohm
Tech Chat

Games! Which do you play?
Which, if any, games do you play? On what platform? I just bought (and completed) Minecraft Dungeons for my Nintendo Switch. Other than ...
#games
245 5072 101
New
DevotionGeo
Backend Developer Forum>Chat/Discussions

What is the reason behind Rust’s web framework, Rocket, not performing as well as expected in the Techempower benchmarks?
I know that these benchmarks might not be the exact picture of real-world scenario, but still I expect a Rust web framework performing a ...
/rust#web-frameworks
36 6155 11
New
Exadra37
Hardware

What monitor(s) do you have for programming?
Please tell us what is your preferred monitor setup for programming(not gaming) and why you have chosen it. Does your monitor have eye p...
#monitors#coding#programming#development
227 8356 88
New
dasdom
General Dev Chat

Standing Desks
No chair. I have a standing desk. This post was split into a dedicated thread from our thread about chairs :slight_smile:
#workspace#opinions
177 8408 77
New
DevotionGeo
Backend Developer Forum>Questions/Help

Can someone explain the -t option/flag in docker run command?
I know that -t flag is used along with -i flag for getting an interactive shell. But I cannot digest what the man page for docker run com...
#docker
7 6666 2
New
AstonJ
Code Editors

Onivim 2 Code Editor
Thanks to @foxtrottwist’s and @Tomas’s posts in this thread: Poll: Which code editor do you use? I bought Onivim! :nerd_face: https://on...
#code-editors/onivim/revery
88 5068 32
New
DevotionGeo
General Dev Chat

The V Programming Language
The V Programming Language Simple language for building maintainable programs V is already mentioned couple of times in the forum, but I...
#programminguages/v
21 10832 7
New
AstonJ
Health & Diet

David Sinclair's new Lifespan podcast
We’ve talked about his book briefly here but it is quickly becoming obsolete - so he’s decided to create a series of 7 podcasts, the firs...
#health#bio-hackers#david-sinclair#podcasts
87 5714 49
New
PragmaticBookshelf
In The Spotlight

Spotlight: Jamis Buck (Author) Interview and AMA!
Author Spotlight Jamis Buck @jamis This month, we have the pleasure of spotlighting author Jamis Buck, who has written Mazes for Prog...
#author-spotlight/ruby/book-the-ray-tracer-challenge/book-mazes-for-programmers
21 5361 9
New
PragmaticBookshelf
In The Spotlight

Spotlight: Rebecca Skinner (Author) Interview and AMA!
Author Spotlight Rebecca Skinner @RebeccaSkinner Welcome to our latest author spotlight, where we sit down with Rebecca Skinner, auth...
#author-spotlight/haskell/book-effective-haskell
106 10217 28
New
Back to top

Latest in General Dev

Deep Learning is Not So Mysterious or Different
In The News
Quantum Speedup Found for Huge Class of Hard Problems | Quanta Magazine
In The News
GIMP - GIMP 3.0 Released
In The News
Google is gifting a year of Gemini Advanced to every college student in the US
In The News
Microsoft Copilot can now ‘see’ what’s on your screen in Edge
In The News
(All) Databases Are Just Files. Postgres Too
In The News
So you want to use Object Storage
In The News
The business of the AI labs
In The News
Tract Postmortem
In The News
JetBrains IDEs Go AI: Coding Agent, Smarter Assistance, Free Tier | The JetBrains Blog
In The News
How Nintendo Bled Atari Games to Death
In The News
4chan has been down since Monday night after “pretty comprehensive own”
In The News
When Life Gives You Java - Oblac
In The News
LLM bots + Next.js image optimization = recipe for bankruptcy (post-mortem) | Metacast Blog
In The News
Temu pulls its U.S. Google Shopping ads
In The News
The Problem with “Vibe Coding” : dylanbeattie.net
In The News
The industrialization of IT
In The News
Async from scratch 2: Wake me maybe | natkr's ramblings
In The News
Ship Software That Does Nothing - Kerrick Long's Blog
In The News
AudioX: Diffusion Transformer for Anything-to-Audio Generation
In The News

View all threads ❯

Latest (all)

Kotlin Notebook Arrives in IntelliJ IDEA
Backend News
Ruby 3.5.0 preview1 Released
Backend News
Clojure Deref (Apr 17, 2025)
Backend News
Kubuntu 25.04 Plucky Puffin released
Linux News
Deep Learning is Not So Mysterious or Different
In The News
Quantum Speedup Found for Huge Class of Hard Problems | Quanta Magazine
In The News
GIMP - GIMP 3.0 Released
In The News
Google is gifting a year of Gemini Advanced to every college student in the US
In The News
Kotlin v2.1.21-RC released!
Backend News
WebSharper 9.0.0.547 released!
Backend News
Spring v7.0.0-M4 and v6.1.19 released!
Backend News
Microsoft Copilot can now ‘see’ what’s on your screen in Edge
In The News
Run your tests against Django's main!
Backend News
Smarter Kotlin Development With JetBrains AI: Junie and AI Assistant in IntelliJ IDEA
Backend News
Arch Linux: Valkey to replace Redis in the [extra] Repository
Linux News

View all threads ❯

We ❤️ helpful members!

We reward our most helpful members via our MOTM scheme - by giving away a whopping 25 books per year!

Member of the Month

Devtalk Sponsors

Pragmatic Bookshelf

Practical resources that improve the lives of professional developers.

Erlang Solutions

We build trusted fault-tolerant systems that scale to billions of users.

AppSignal

Catch errors, track performance, monitor hosts and more.

WyeWorks

Enabling companies to succeed by building software people love.

Pragmatic Studio

Courses that'll move you from confusion to "Aha, now I get it!"

View all our sponsors ❯

Categories:

Popular Portals

Devtalk Sponsors

Pragmatic Bookshelf

Practical resources that improve the lives of professional developers.

Erlang Solutions

We build trusted fault-tolerant systems that scale to billions of users.

AppSignal

Catch errors, track performance, monitor hosts and more.

WyeWorks

Enabling companies to succeed by building software people love.

Pragmatic Studio

Courses that'll move you from confusion to "Aha, now I get it!"

View all our sponsors ❯

We're in Beta

About us Mission Statement See our Roadmap