Using Firestore and Firebase storage for image upload Functionality on Angular 11 website results to insecure rules notification from Firebase


On some websites, I include a contact page where users can upload a specific image along with completing a contact form that will be sent to website merchant. I use cloud firestore along with firebase storage to retrieve that image through the dynamic transactional email template that is sent to the owner of the website. Clients should not be required to log-in in order to use this service. In other words, anyone whom visits the website should be able to complete the form and voluntarily upload an image related to the content of the contact form (In this case, a career application which may be accompanied by an applicant’s resume). However, my Firebase security rules must allow all reads and writes for this to service to function (allow read, write: if true;).

This recently resulted in firebase sending me an email notification concerning my security rules being insecure.

My question is: Is there a way to allow all users (Unauthenicated or not) to use this service without firebase recognizing the rules as insecure?

Source: Angular Questions


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Still Have Questions?

Our dedicated development team is here for you!

We can help you find answers to your question for as low as 5$.

Contact Us