Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
714 views
in Technique[技术] by (71.8m points)

parse platform - Back4App security permissions by the default selected as public

I found this setup on Back4App dashboard (Security tab in the class).

enter image description here

As you see Class Level Permissions view says that all Public checkers are selected.

Does it mean that anyone can access my class from the NET even without authentication?

Also I see that I can search through role, user or pointer. Which means this view only for adding some permission for selected items which I have not added yet.

But I am curious to know if this is some setting I need to adjust by myself and all classes are public open by default.

I know there are some articles about security set-up.

question from:https://stackoverflow.com/questions/66054413/back4app-security-permissions-by-the-default-selected-as-public

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Reply

0 votes
by (71.8m points)

Yes, by default, they are currently set as public, but I highly recommend you to set them according to your needs, in order to avoid that you'll not let any sensitive data as public or allow that data can be read/update by someone that shouldn't have access for it.

As you tagged Back4App, I'd like to share some security guides created from them, here they are:

You can also check the Security session of the open-source documentation: http://docs.parseplatform.org/js/guide/#security

I hope these links might help you. :)


与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
OGeek|极客中国-欢迎来到极客的世界,一个免费开放的程序员编程交流平台!开放,进步,分享!让技术改变生活,让极客改变未来! Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

...