Hey guys,
I’m getting ready to deploy my dapp, and I have some queries about what exactly ACL permissions are. Currently, I have a table which updates with relevant info when a user performs certain transactions on the dapp. All rows in that table have ACL read+write.
I don’t really have any sensitive info on the website since everything is decentralised anyways. The only concern I have is that I don’t want anyone except myself and my team to be able to access and change database values.
So my question is this: Do I need to change any of the ACL permissions or can I leave them as read+write? Does having ACL read + write permissions mean that anyone can read or write data?
I went through the Moralis Security docs, however I’m still not entirely clear about this.
NOTE: I am using a self-hosted Moralis server with MongoDB.
Thanks!