Hello everyone. First of all, I have been looking for information about this problem, but I did not find anything.
I’m making an app that connects to my firebase database. I was testing the application and I just realized that at no time have I filled in the “Firebase Token” space.
I am concerned that the security of the database is compromised because of this, because apparently no token has been needed to modify the data.
As of now in your configuration you have set “Anyone in the world who finds this can Remove, edit or add to this” I would suggest to at least give permission to only authenticated users.
I know, but my app saves data to the database even though the user is not logged in. I think I know how to secure the database well, but as I said before, the problem is that it works without any token.