Hello! I am currently using Firebase’s realtime database to store my player data.
I’m currently looking to secure the database with the rules.
Anyone knows or have an idea of what I should do to secure it? I know the basic rules such as read, write, validate, and foo but I’m lost on how to secure it. Thank you in advance, any help is appreciated
api keys. the client cant read server code. so u can store the api key in the server.
if you wanna generate a strong password so itcant be easily bruteforced(if by chance someone knows your external datastore link), heres a random pass generator i made
function gener(lenth)
local strtoret = ""
for i = 1,lenth do
strtoret = strtoret..string.char(math.random(33,126))
end
return strtoret
end
print(gener(25))Firebase already has that by default so basically, there’s this thing called Firebase rules, and is there anything I should do to it in order to make it more secure?
You most likely aren’t going to need any of those database rules. You’re already walking in assuming that you need more security when you aren’t even sure what you need it against. If you think security is going to be a problem then check with your Lua code first so that bad faith actors aren’t able to leverage game systems to read or write data unexpectedly from your database.