The security and accounts
At this point, our Lending Library app does exactly what we want it to do. It keeps track of all our stuff and to whom we've lent items. However, if we were to put this app into use, there are some security issues inside the app itself that we'd have to deal with first.
First and foremost, what's to stop someone from accessing our app and erasing their name from an item they borrowed? That scumbag STEVE might just keep our linear compression wrench forever if he were so inclined, and we'd have no way of proving whether or not he still had it.
We cannot let such thievery and dishonesty go unpunished! STEVE must be held accountable! So, we need to implement security. Specifically, we need to perform two actions:
Only allow editing in the UI by the owner of the items
Secure the database so that changes can't be made using the web console
Removing insecure
The first step in accomplishing these two goals is to remove the insecure library from Meteor. By default, the insecure...
