Hi, I’m new to Ionic and I have not found an answear to my question, so I hope someone can help me.
If I use Ionic+Firebase, then I have to code the business logic at the clientside (Angular) and I’ve read that one can decompile the .apk file and can see the code. So my question is:
Is it possible to decompile the .apk file, change the business logic (Angular code), compile again and run the app with manipulated business logic?
If it is possible, then the security rules of Firebase can’t help me all the time, e.g.:
Assumtion: If I have a node in the FIrebase-DB “writeNode1” and every authenticated user can add new data to the node (security rule). The business rule is: if and only if a user clicks on button “kk” then write some data to the “writeNode1”.
Problem: If someone can manipulate the business logic then he can “flood” the “writeNode1” with thrashdata. Is something like this possible? How can I prevent something like this?