I am familiar with this snippet of code in firebase rule
"AuthenticatedUsers":{
"$uid":{
".read":"auth.uid===$uid",
".write": "auth.uid === $uid"
}
if I want to save a message in two different roots, and these roots can only be accessed (read/write) by two users. how can I do the snippet of code above, without sharing the uId given by firebase with the two users previously??
I have to save the uId of the users in some root that has this rule:
".write": "auth !== null",
".read": "auth !== null"
but won't that make that some root is vulnerable to be hacked? steal or alter this uid? would that harm the owner of the uid in someway ?