IAM roles needed to hide Firestore user data
180 views
Skip to first unread message
Andre Kuzac
Jun 13, 2023, 1:34:57 AM6/13/23
to Firebase Google Group
Hey everyone,
I am trying to create a IAM custom role or create IAM condition, i do not care which one, but what i am trying to do is:
- Have all permissions that Firebase Admin has
- Except permission to view collections and key in the Firebase store, with that role i still want to be able to manage indexes, create security rules, see usage and define extensions. But i do not want to be able to see user information.
We are trying to create an app that is full of user sensitive data and client side encryption is not really an option at this point.
What i currently have is cloned Firebase Admin role without some of datastore.databases.* that hides Firestore tabs behind
"To manage Cloud Firestore, ask a project owner for the necessary permissions"
which is not ideal as i want to be able to see Usage and manage Indexes and Security rules.
"To manage Cloud Firestore, ask a project owner for the necessary permissions"
which is not ideal as i want to be able to see Usage and manage Indexes and Security rules.
I tried toggling multiple different datastore.databases.* and datastore.entities.* on/off but everything seem to lead to either the entire page hidden or showing up.
TLDR
Is there a way to hide "Data" tab from Firestore page with permissions, but keep everything else running?
Thanks,
Andre
Reply all
Reply to author
Forward
0 new messages