How to secure my app the best way?

joran · April 25, 2017, 9:19am

Hi

I have published a new app “Live”
It is set to “Privacy”
I have a landing page where you login with / email & password

my question are how it is possible that I can copy a “direct link” shown in my browsers status field, like this

// https://logbook.bubbleapps.io/captains_logbook_menu/1490797652842x43 . . . . . . . . . //

and therby get access to this specific page, even though am not logged in.

I have in bubble editor settings activated "Limit access to this app . . . . " and then my app is protected
but, i just wonder why the link (se above) is shown in the first place.

Greetings // Joran

felipe · July 24, 2017, 3:57am

I have the same question… did you solved it somehow? Can you share the solution? @joran

1danielbaker · July 24, 2017, 4:16am

Set up the workflow “When page is loaded and current user is not logged in” go to index page

felipe · July 24, 2017, 4:25am

@1danielbaker yep, I did that… just wondering if there is a more secure way! thanks !

1danielbaker · July 24, 2017, 6:20am

If your privacy settings block content for people not logged in it’s pretty safe. Even if it takes a split second to redirect the page your sensitive content will be blocked. As an added measure you can add a constraint to all the elements on the page to not be visible if current user isnt logged in as well.

Topic		Replies	Views
Application security and page visibility Questions	8	735	November 10, 2020
How Secure Is This Idea? Database	2	354	February 29, 2024
Page Privacy Rules Need help	3	466	August 3, 2018
Is there any guidance on how to do threat modelling with a bubble app? Need help	3	261	September 8, 2021
User logged in and visible page Need help	3	222	November 29, 2023

How to secure my app the best way?

Related topics