Skip to content

Commit

Permalink
fix spacing
Browse files Browse the repository at this point in the history
  • Loading branch information
@lindseymoore
lindseymoore committed Feb 2, 2024
1 parent cd5ba87 commit d9d615e
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 4 deletions.
6 changes: 4 additions & 2 deletions source/rules/filters.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -320,11 +320,13 @@ from the App Services UI or by deploying configuration files with Realm CLI:
While :ref:`Role-based Permissions <roles>` and Filters can hide specific
documents and fields within a collection there is a potential that
data can be exposed if the system allows arbitrary
queries to access the collection. For example, queries or functions that
queries to access the collection.
For example, queries or functions that
raise errors depending on the values stored in a collection (such
as division-by-zero errors) may reveal information about documents, even if
a role or filter prevents the querying user from viewing
documents directly. Users may also make inferences about the underlying data
in other ways (such as by measuring query execution time, which can be affected
by the data's distribution). Be aware that this is possible and audit your
by the data's distribution).
Be aware that this is possible and audit your
data access patterns where neccessary.
6 changes: 4 additions & 2 deletions source/rules/roles.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -524,11 +524,13 @@ deploying configuration files with {+cli+}:
While Role-based Permissions and :ref:`Filters <filters>` can hide specific
documents and fields within a collection there is a potential that
data can be exposed if the system allows arbitrary
queries to access the collection. For example, queries or functions that
queries to access the collection.
For example, queries or functions that
raise errors depending on the values stored in a collection (such
as division-by-zero errors) may reveal information about documents, even if
a role or filter prevents the querying user from viewing
documents directly. Users may also make inferences about the underlying data
in other ways (such as by measuring query execution time, which can be affected
by the data's distribution). Be aware that this is possible and audit your
by the data's distribution).
Be aware that this is possible and audit your
data access patterns where neccessary.

0 comments on commit d9d615e

Please sign in to comment.