\""password\"":\""p1\""}"" https://api.appery.io/rest/1/db/users /code So can anyone create rows if you know the database id? For custom collection there is a secure collection option. How should this be done for the Users collection? "
The question is in my first message.
So can anyone create rows if you know the database id?
The answer I assume is yes
If you know the db id one can create a script that creates thousands of rows.
Hello,
I have unchecked those options in Users permissions, but I can still execute curl command and create a new row in user collection.
Hi,
I created a test using the Ionic login template app which has a Twitter login example that is working.
Works on iPhone using the Apperio IO tester as well.
In this example I see the login status changing from 'inProgress' to 'authorized'
So you can ignore this issue.
Thanks, will do.