Rule No 1 :

Basic rules - Everyone can read and write your full database.

{
  "rules": {
    ".read": "true",
    ".write": "true"
  }
}

ㅤ

Rule No 2 :

Basic rules - No one will be able to read and write your database.

{
  "rules": {
    ".read": "false",
    ".write": "false"
  }
}

ㅤ

Rule No 3 :

Basic rules - Any authenticated user can read and write your full database.

{
  "rules": {
    ".read": "auth.uid != null",
    ".write": "auth.uid != null"
  }
}

ㅤ

Rule No 4 :

Strong rules - Only user and admin can read and write user/{user_id}/password_activity/ Tag.

image878×339 14.5 KB

Rules :

{
  "rules": {
    ".read": "false",
    ".write": "false",
      
      "user": {
    
    "$uid": {
      
      "password_activity":{
              ".read": "$uid === auth.uid
                       || auth.token.email.endsWith(\"@admin.example.com\")",
                                                     
               ".write": "$uid === auth.uid
                         || auth.token.email.endsWith(\"@admin.example.com\")",
       },
      }
    }
  }
}

Note : admin account email must be end with @admin.example.com
Example : [email protected]

ㅤ

Rule No 5 :

Strong rules - Any authenticated user can read user/{user_id}/password_activity/ but only user can write his password activity.

image850×366 14.5 KB

Rules :

{
  "rules": {
    ".read": "false",
    ".write": "false",
      
      "user": {
    
    "$uid": {
      
      "password_activity":{
              ".read": "auth.uid != null",
                                                     
               ".write": "$uid === auth.uid",
       },
      }
    }
  }
}

ㅤ

Rule No 6 :

For example user2 need to create a data in user/user1/friends/ tag.

Example :

image618×252 3.86 KB

Rules :

{
  "rules": {
    ".read": "false",
    ".write": "false",
      
      "user": {
    
    "$uid": {
      
      "friends" : {
        
        "$friend_uid": {
          
          ".read": "auth.uid != null",
            
          ".write": "$friend_uid === auth.uid",
          
        },
        
        }
      }
    }
  }
}

Note : Any authenticated user can read user/user1/friends/ tag but only user2 can create his data in user/user1/friends/ tag.

ㅤ

Note : I know this guide really hard to understand. but listen good things never come easily.

If this help you then just press ❤️ button

Please Abhijit bro. Guide me how to secure MySQL database from hacker.

Does this mean that nobody (even the app itself) cannot write to the database?

Yes.

Sorry dear, I never used MySQL database. so i don’t have any idea.

I too don’t use it, but yes maybe you can add these kinds of access rules there too(if possible)

Anyways, Good work @anon61431939

Thanks @Horizon.

Use multiple encryption, url uncoder, replacement and more. I am going to create a guide soon.

Good to hear that @I_Am_The_Bong

need guide for firestore too

Ok, Within 5 days.

Great guide sir

Thanks dear.

Dear.

There are many steps to increase the security of data within a database. Can’t explain it to you in a few lines You will have to read and research the subject.
@MrSidhartha

You are right

So How do we Do that only my App can read and write data ?
Should set it to true only or is there another way

Please follow my guide.

does Google sign in accounts count as authenticated or not?

Yes. User can be any method (github, facebook, twitter and etc) to authenticate.

I meant does signing in using google authenticate the user automatically or I need to send authentication e-mail?