Firebase App Check using reCAPTCHA v3

Рет қаралды 6,721

Күн бұрын

Пікірлер: 21

@HeavyMachinery512 4 ай бұрын

Thanks a lot for the video. Much needed for me being in the early stages of the Firebase journey. really nicely explained. Until now, I always thought implementing App Check must be very difficult in code lol. Thanks again.

@CodingCatDev 4 ай бұрын

I am glad you got a lot of use from it!

@_thewatcher27 2 ай бұрын

Thank You!

@ShuttleStriker07 2 ай бұрын

Thank you so much

@jack_lion 10 ай бұрын

Great video thanks for the coverage

@CodingCatDev 10 ай бұрын

Glad you enjoyed it!

@jack_lion 10 ай бұрын

I have a question regarding app check and firestore rules if you wouldn’t mind hearing it. It seems that when I enforce app check it prevents authenticated users from querying data from their firestore doc. I’m assuming this is because of app check since the issue stops when I stop enforcing app check. What sorts of extra considerations should be made towards the firestore rules when enforcing app check? Thanks again in advance

@jack_lion 10 ай бұрын

Nevermind, it was a typo in the URL i entered on recaptcha lol. Problem solved

@CodingCatDev 10 ай бұрын

@@jack_lion great I am glad you were able to find it!

@mauhidusmani7212 Жыл бұрын

thank you

@CodingCatDev Жыл бұрын

You're welcome, thanks for checking it out!

@mn109 6 ай бұрын

Thanks for the video! I have three Firebase apps. Should I create a reCAPTCHA key for each app, or can I share one key between different apps? As long as the app site domains are registered in the key, it seems to work. But from security perspective, I feel like creating a key for each app is better when it comes to analyzing users access history and utilizing more features of reCAPTCHA scoring systems and so on.

@CodingCatDev 5 ай бұрын

I would create a key per app.

@georgedicu6001 Жыл бұрын

you dont need to specify false on all docs, its by default implemented. If you dont have a collection/doc allowed, its by default denied.

@CodingCatDev Жыл бұрын

Old habits, from when dbs were left open I guess.

@georgedicu6001 Жыл бұрын

a very very good security enforcement habit I would say! @@CodingCatDev BTW, awesome video!

@erizonencina4917 Жыл бұрын

thanks a lot for your video, it was helpull to me. it's a pity that we need to add debug tokens by each develop environment.

@CodingCatDev Жыл бұрын

It is a little painful, but hopefully worth it to keep other bad actors out :D

@bryanlopez1604 9 ай бұрын

I have a question, I did not do the deploy, I still have it in my local but the secret key in the appcheck does not take it, do you know if it is because I do not have the deploy? help plis