I have a web app in form of a wordpress plugin, that uses Firebase realtime database for its data. Wordpress users log in to access a specific page where the plugin is used.
The permissions right now are open for anyone to read and write. Which of course is not great.
Is there a simple way to authenticate, if the data is accessed from that particular page/url, and then say read, write: true
For example:
{
"rules": {
"website.com/user-portal/": {
".read": true,
".write": true
}
}
}
The reasoning behind above, is so that all logged in users of that Wordpress page can access the data easily. New users come and go, through the wordpress site.
