Upgrade to Pro — share decks privately, control downloads, hide ads and more …

firebase-meetup-#11-2019-02-18

55c65de66a523fad9f41b21e70dcfa29?s=47 Tomokazu Kozuma
February 18, 2019
Programming
6
1.5k

 firebase-meetup-#11-2019-02-18

55c65de66a523fad9f41b21e70dcfa29?s=128

Tomokazu Kozuma

February 18, 2019
Tweet

More Decks by Tomokazu Kozuma

See All by Tomokazu Kozuma
google-inside-fintech-2019-06-10
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
1
460
PORT-Firebase × Blockchain-2019-05-21
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
2
250
ginco-engineer-meetup-2019-04-11
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
4
2.6k
blockchain.tokyo#18-2019-03-26
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
3
1.5k
KyberNetwork-DEX-research2-at-Neutrino-2018-11-12.pdf
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
0
1.4k
career-event-by-techbowl-at-mercari-2018-11-07.pdf
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
0
1.1k
Backend of Cryptocurrency Wallet and Ginco integrated with DEX KyberNetwork
55c65de66a523fad9f41b21e70dcfa29?s=48 tomokazukozuma
7
6.6k

Other Decks in Programming

See All in Programming
Reactでアプリケーションを構築する多様化
2917a3c430817eb71086f8973c06ebba?s=48 sakito
4
3.4k
偏見と妄想で語るスクリプト言語としての Swift / Swift as a Scripting Language
Af64bc38c0ffcfcabdf430759ee491ce?s=48 lovee
2
270
Oculus Interaction SDK 概説 / xrdnk-caunity-LT4
270b0c7883545117a9a618dc7ca7cc83?s=48 xrdnk
0
220
コードの解析と言語習得の心得
72dae9d4524988d16990da682116fc8a?s=48 jinjin33333
0
130
코드 품질 1% 올리기
354271902cd8ba2762d05b251dfa0f84?s=48 pluu
1
1k
Milestoner
E0e036f89c14b3e59640318eedf9670b?s=48 bkuhlmann
1
200
デュアルトラックアジャイル × Agile Testingから 見えてきたQAのミライ
F0a8d07597a19192791bf663504d2a17?s=48 atamaplus
0
400
Viteはいいぞ/Vite is Good
309384d4f7b37d3532fd81800d356bcf?s=48 dojineko
1
110
Reinventing the wheel ... as a service
9eafc29df96e6aaf4a3eb4c0209086ae?s=48 mariofusco
3
270
書籍『良いコード/悪いコードで学ぶ設計入門』でエンジニアリングの当たり前を変える
8ec2b967e38f000eb63ae345cd7c58e6?s=48 minodriven
3
1.1k
Let's make a contract: the art of designing a Java API
9eafc29df96e6aaf4a3eb4c0209086ae?s=48 mariofusco
0
160
Nix for Scala folks
08f642741fba006656cb86fb61c160b3?s=48 kubukoz
0
130

Featured

See All Featured
Let's Do A Bunch of Simple Stuff to Make Websites Faster
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
498
130k
Ruby is Unlike a Banana
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
91
9.2k
Streamline your AJAX requests with AmplifyJS and jQuery
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
125
8.5k
The Brand Is Dead. Long Live the Brand.
A415db3ac9e9668acbc1fb36eead84ac?s=48 mthomps
45
2.7k
Mobile First: as difficult as doing things right
0fe2973fa8d27d96547e43322341183a?s=48 swwweet
212
7.5k
Keith and Marios Guide to Fast Websites
E14f55d3f939977cecbf51b64ff6f861?s=48 keithpitt
404
21k
Fashionably flexible responsive web design (full day workshop)
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
396
62k
Fireside Chat
864a009ac73600c7c02e1f26629dd989?s=48 paigeccino
11
1.3k
Building Your Own Lightsaber
Fe6b81005d1553accd6b2a28f6a2bef1?s=48 phodgson
94
4.6k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
C44e1f7e22c3f23cff7bc130871047ef?s=48 eileencodes
119
28k
How STYLIGHT went responsive
F716e5f737fcfb03f2cf8d1a184f1dbe?s=48 nonsquared
85
3.9k
How to Ace a Technical Interview
2f5463832ccb768ccb4a1ca3607c27ef?s=48 jacobian
265
21k

Transcript

  1. 'JSFTUPSFSVMFTͷӡ༻ͱ -PDBM&NVMBUPSΛ࢖ͬͨςετ Tomokazu Kozuma 2019 / 02 / 18 /

    MON Firebase Meetup #11

  2. A B O U T M Y S E L

    F ࣗݾ঺հ Tomokazu Kozuma @Tomokazu106 ౦ژ޻ۀେֶେֶӃଔۀޙɺαΠόʔΤʔδΣϯτͰεϚϗήʔϜͷαʔόɺΠϯ ϑϥશൠΛ୲౰ɻԾ૝௨՟ʹ͍ٕͭͯज़ϒϩάΛॻ͍ͯΔ͏ͪʹ຅಄͠ɺຊ৬ͱ ͯ͠஫ྗ͢ΔͨΊʹ(JODPʹೖࣾɻ(JODPͰ͸ϒϩοΫνΣʔϯͷϊʔυӡ༻ɺϋʔ υϑΥʔΫରԠɺόοΫΤϯυͳͲ޿ൣғΛ୲౰ɻ

  3. Company Profile

  4. ·ͱΊͯͻͱͭʹ BITCOIN Blockchain BITCOIN CASH Blockchain LITECOIN Blockchain XRP(Ripple) Blockchain

    ETHEREUM CLASSIC Blockchain ETHEREUM Blockchain

  5. ෳ਺ͷԾ૝௨՟Λ·ͱΊͯ؅ཧ

  6. T I T L E T E X T શମߏ੒

  7. ֓ཁ • 'JSFTUPSFͰى͍ͬͯ͜ΔηΩϡϦςΟ໰୊ • (JODPͷSVMFTӡ༻ͷมભ • -PDBM&NVMBUPSΛ࢖ͬͨςετ A G E

    N D A

  8. 'JSFTUPSFͰى͍ͬͯ͜Δ໰୊ P A R T 1

  9. S e c u r i t y P r

    o b l e m ԯ݅ͷػີ৘ใ͕ެ։͞Ε͍ͯΔ • 'JSFCBTF%BUBCBTFΛ࢖͍ͬͯΔ಺ͷ͕࿙Ӯ • ݪҼ͸SVMFTΛ͖ͪΜͱઃఆͰ͖͍ͯͳ͍ h t t p s : / / w w w . a p p t h o r i t y . c o m / c o m p a n y / p r e s s / p r e s s - r e l e a s e s / 6 2 - o f - e n t e r p r i s e s - e x p o s e d - t o - s e n s i t i v e - d a t a - l o s s - v i a - f i r e b a s e - v u l n e r a b i l i t y

  10. 'JSFTUPSFͷηΩϡϦςΟجૅ • ΫϥΠΞϯτ͔Β௚઀'JSFTUPSFΞΫηεͰ͖Δ • ΞΫηεʹ͸"1*Ωʔ͕ඞཁ • "1*Ωʔ͸ΫϥΠΞϯτʹຒΊࠐΉͷͰ୭Ͱ΋ΈΕΔ • ୭Ͱ΋ΞΫηεͰ͖Δ͔ΒSVMFTͰ੍ޚ A

    b o u t F i r e s t o r e

  11. 'JSFTUPSFSVMFT • SFBEXSJUFݖݶ • σʔλͷόϦσʔγϣϯ T I T L E

    T E X T Firestore Cloud 3VMFT "1*ΩʔͰΞΫηε

  12. • SFBE୯ҰEPDΛऔಘ͢ΔHFUͱෳ਺औಘ͢ΔMJTU • XSJUFDSFBUF VQEBUF EFMFUF SFBEXSJUFݖݶ R e a

    d R e s t r i c t i o n match /Users/{uid} { allow get: if someCondition(); allow create: if someCondition(); } function someCondition() { … }

  13. • ϦΫΤετσʔλɿSFRVFTUSFTPVSDFEBUB • 'JSFTUPSFσʔλɿSFTPVSDFEBUB • ܕɿJOU TUSJOH CPPM UJNFTUBNQͳͲ •

    LFZɿIBT"MM IBT0OMZ IBT"OZ σʔλͷόϦσʔγϣϯ D a t a V a l i d a t i o n match /Users/{uid} { allow update: if request.resource.data.keys().hasAll(["name", "age"]) && request.resource.data.name is string && request.resource.data.name != "" && request.resource.data.age == resource.data.age }

  14. 5 S e t t i n g s e

    c u r e r u l e s ػີσʔλ͸ผ֊૚ผSVMFTʹ͢Δ ϫΠϧυΧʔυͰͷSVMFTઃఆʹؾΛ͚ͭΔ ৘ใ࿙Ӯ͠ͳ͍ͨΊͷSVMFTઃఆ

  15. • ผ֊૚ʹͯ͠SVMFTઃఆΛݫ͘͢͠Δ ػີσʔλ͸ผ֊૚ D i v i d e S

    e c r e t D a t a match /Users/{uid} { // ೝূࡁϢʔβʹެ։ allow read: if isAuthUser(); // ࣗ෼ͷσʔλ͚ͩʹΞΫηεՄ match /Private/Info { allow read: if isMyData(uid); } } function isMyData(uid) { return request.auth.uid == uid; }

  16. ϫΠϧυΧʔυͰͷSVMFTઃఆ • ϫΠϧυΧʔυͰෳ਺SVMF͕ద༻͞ΕͯڐՄ͞ΕΔ U s i n g w i

    l d c a r d match /Users/{uid} { // ৚݅1 match /{allChildren=**} { allow read: if isAuthUser(); } // ৚݅2 match /Private/Info { allow read: if isMyData(uid); } } function isMyData(uid) { return request.auth.uid == uid; }

  17. (JODPͷSVMFTӡ༻ͷมભ P A R T 2

  18. ϦϦʔεॳظ • ϦϦʔε౰ॳ͸SVMFTͷςετ͕ͳ͔ͬͨ • σϓϩΠ͔ͯ͠Βಈ࡞νΣοΫͳͷͰ͕͔͔࣌ؒΔ • ։ൃ؀ڥʹӨڹΛ༩͑ͯ͠·͏ E a r

    l y S t a g e

  19. ϦϦʔεதظ • SVMFT͕ߦΛ௒͑͸͡Ίͯมߋ͕ࠔ೉ʹͳ͖ͬͯͨ • SVMFTΛมߋͰ͖ΔΑ͏ʹςετίʔυΛ࣮૷ • ςετ͢Δʹ͸ςετ༻ͷ'JSFCBTF1SPKFDU͕ඞཁ M i d

    d l e S t a g e

  20. ςετ1SPKFDUΛ࢖ͬͨςετ

  21. SVMFTͷςετํ๏ • 'JSFCBTF4%,ʹ͸$MJFOU4%,ͱ"ENJO4%,͕͋Δ • $MJFOU4%,͚ͩSVMFT͕ద༻͞ΕΔ • +BWB4DSJQU͚ͩͭͷ4%,͕͋Δ H o w

    t o t e s t Firestore Cloud $MJFOU4%, "ENJO4%, 3VMFT

  22. • UFTUͷͨΊͷ'JSFCBTFϓϩδΣΫτΛ࡞੒ • 'JSFCBTF"VUIFOUJDBUJPOͰಗ໊ೝূΛ༗ޮԽ • ωοτϫʔΫӽ͠ͳͷͰ͕͔͔࣌ؒΔ • SVMFTͱςετσʔλͷڝ߹ ςετ1SPKFDUΛ࢖ͬͨํ๏ T

    e s t u s i n g p r o j e c t Firestore Cloud

  23. ݱࡏ • ೥݄ʹ'JSFTUPSF-PDBM&NVMBUPSൃද • SVMFTͷςετ͸ϩʔΧϧ؀ڥ͚ͩͰ׬݁ • ଞਓͷ࡞ۀΛҙࣝ͠ͳͯ͘ྑ͘ͳͬͨͷͰSVMFTͷ௥Ճɺ मਖ਼͕͠΍͘͢ͳͬͨ P r

    e s e n t S t a g e

  24. -PDBM&NVMBUPSΛ࢖ͬͨςετ P A R T 3

  25. 'JSFCBTF-PDBM&NVMBUPS • ςετʹ͸!pSFCBTFUFTUJOHϞδϡʔϧΛ࢖༻ • ೝূະೝূΞΧ΢ϯτɺ"ENJOΞΧ΢ϯτΛ؆୯ʹར ༻Ͱ͖Δ • ςετσʔλͷڝ߹͠ͳ͍͠ɺUSVODBUF͠ͳ͍͍ͯ͘ • ςετ࣮ߦ͕࣌ؒʹ࡟ݮ

    L o c a l E m u l a t o r

  26. L o a d r u l e s SVMFTͷϩʔυ

    import * as firebase from ‘@firebase/testing’ // rulesͷϩʔυ firebase.loadFirestoreRules({ projectId: 'test-project-00', rules: fs.readFileSync("firestore.rules", "utf8") }) • SVMFTͷϩʔυ͸೚ҙͷQSPKFDU*EͰͰ͖Δ • QSPKFDU*EผʹݸผͷσʔλۭؒΛ࣋ͯΔ • ςετຖʹQSPKFDU*EΛมߋ͢Ε͹·ͬ͞Βͳঢ়ଶ

  27. • ෳ਺ͷೝূΞΧ΢ϯτΛಉ࣌ʹѻ͑Δ L o a d r u l e

    s ΞΧ΢ϯτ࡞੒ // ೝূࡁΞΧ΢ϯτ const firestore = firebase .initializeTestApp({ projectId: ‘test-project-00', auth: {uid: ‘test-account’} }) .firestore(); // AdminΞΧ΢ϯτ const adminFirestore = firebase .initializeAdminApp({ projectId: 'test-project-00', auth: ‘admin-account’ }) .firestore();

  28. ·ͱΊ • SVMFTͷઃఆͰجຊతʹ৘ใ࿙Ӯ͸๷͛Δ • ػີ৘ใ͸֊૚Λ෼͚ͯϫΠϧυΧʔυΛଟ༻͠ͳ͍ • SVMFTͷςετ͸-PDBM&NVMBUPSͰޮ཰Խ S u m

    m a r y