NEWCreating a Modern Firebase Powered Application with TDD

Creating a Modern Firebase Powered Application with TDD

Use reactive programming and tests to build a professional app

start
Lesson 13

Configuring for Production

Making sure the app works in a production environment

PRO
Back to all modules list

Module Outline

  1. Source Code & Resources PRO
  2. Lesson 1: Introduction PUBLIC
  3. Lesson 2: The Structure of this Module PUBLIC
  4. Lesson 3: [Sprint One] Setting up Firebase PUBLIC
  5. Lesson 4: [Sprint One] Creating Security Rules with TDD PRO
  6. Lesson 5: [Sprint One] Testing Authentication PRO
  7. Lesson 6: [Sprint One] Component Store PRO
  8. Lesson 7: [Sprint One] Circumventing Firebase Authentication for E2E Tests PRO
  9. Lesson 8: [Sprint Two] Displaying Client List from Firestore PRO
  10. Lesson 9: [Sprint Two] - Adding Clients PRO
  11. Lesson 10: [Sprint Two] - Editing Clients PRO
  12. Lesson 11: [Sprint Two] - Client Details PRO
  13. Lesson 12: Preparing for Delivery PRO
  14. Lesson 13: Configuring for Production PRO
  15. Lesson 14: [Sprint Three] - Refactoring PRO
  16. Lesson 15: [Sprint Three] Setting up PWA PRO
  17. Lesson 16: [Sprint Three] Logout PRO
  18. Lesson 17: [Sprint Three] Delete a Client PRO
  19. Lesson 18: [Sprint Three] - Feedback Mechanism PRO
  20. Lesson 19: [Sprint Three] View Feedback PRO
  21. Lesson 20: More Styling PRO
  22. Lesson 21: [Sprint Four] - Refactoring Feedback PRO
  23. Lesson 22: [Sprint Four] - Feedback Dates PRO
  24. Lesson 23: [Sprint Four] - Client Survey PRO
  25. Lesson 24: [Sprint Four] - View Survey PRO
  26. Lesson 25: Final Touches PRO
  27. Lesson 26: Conclusion PRO

Lesson Outline

  1. Updating Security Rules

    1. Configuring the Netlify App

      Updating Security Rules

      At the moment, our Firestore security rules define the admin user as [email protected] (well, mine do - hopefully yours use your own email address) That's not going to work so well for our actual client. If they attempt to authenticate with their own Google account, they aren't going to be able to access anything. We will need to update this to use the clients email address.

      Project management

      Make sure to create an issue and task branch for this work, e.g:

      chore: update security rules with clients email address

      Update firestore.rules to use the clients email address (assuming that you aren't actually delivering this app to someone else, you might test this by using a different email address that you own)

      rules_version = '2';
service cloud.firestore {

  match /databases/{database}/documents {

    match /{document=**} {
      allow read, write: if isAdmin();
    }
  }

  function isAdmin(){
  	return request.auth != null && request.auth.token.email == '[email protected]' && request.auth.token.email_verified;
  }
}

      Now let's run our Firestore security rules tests to see if this breaks anything:

      npm run test:rules

      and indeed it does break things:

      PRO

      Thanks for checking out the preview of this lesson!

      You do not have the appropriate membership to view the full lesson. If you would like full access to this module you can view membership options (or log in if you are already have an appropriate membership).