I have one application requirement, wherein I want to store one particular token count (say token name ABC) at user level in one collection.
And basis this ABC token volume, I am categorizing users in different levels. Hence this collection becomes very critical, and should not be accessible/modifiable by anyone outside the system.
I plan to get this collection updated using the cloud function. Few questions I have:
- How to define the security parameters for this collection. I have gone through the security documentation, but could not find anything relevant for when we want to update this using cloud function.
- For getting user category level, I can create a function in cloud function. But the issue is- in case if this is being called from frontend, it will be accessible by all, and for all the users (assuming I provide address as input to this function. Any user can modify this address, and start hitting api to pull all the info)
- Any other recommended approach for this.
Thanks in advance.