I want to use Google's Firestore to save user data, while the backend uses PHP. So far I configured the access rules like this: rules_version = '2'; service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read, write: if…
In my code I'm updating a user's "decks" list by adding one item: const deckId = 'fake-deck-id'; await updateDoc(doc(db, 'users', userId), { decks: arrayUnion(deckId), }); However, this is giving a permission-denied error. Here are my firestore rules: // Allow updates…
I would like to run firebase deploy --only database and it deploys the Firebase Real time database rules for each of my databases instances. I would like the config of firebase.json / .firebaserc and wherever that applies if that's possible.
I am using @angular/fire and I have a temples collection with below schema: { name: 'Sri Chamundeshwari temple', address: 'Chamundi hills, Mysore', roles: { '[email protected]': 'owner', '[email protected]': 'admin', '[email protected]': 'member', '[email protected]': 'viewer' } } I want only the 4 users…
Example: service cloud.firestore { match /databases/{database}/documents { match /{document=**} { allow read, write: if true; } } } { "project_info": { "project_number": "project-number", "project_id": "project-id", "storage_bucket": "project-storage-bucket" }, "client": [ { "client_info": { "mobilesdk_app_id": "mobilesdk_app_id", "android_client_info": { "package_name": "com.example.sample" }…
I want to know the extent that firestore caches security rule evaluations of get() lookups when executing a query or across queries. I feel that the docs, while they do mention cacheing occurs, do not detail the specifics of when…
Below are my Firestore rules. I have a "users" collection where the document ID is the user's UID in the authentication. I want only admins to access some users data or the user itself. service cloud.firestore { match /databases/{database}/documents {…
These are my security rules for Cloud Firestore: rules_version = '2'; service cloud.firestore { match /databases/{database}/documents { match /Feedback/{feedback} { allow read: if resource.data.uid == request.auth.uid; } } } It appears that I have a weird bug. When I try…
I'm trying to set Firestore rules, allowing user to update only certain fields inside of a nested object. I know if it's a top level key, we can simply use something like this: allow update: if request.auth.uid == userID &&…
I have a node "purchasetokens" - "$userId" - ""$purchaseToken"" and a key "valid:True/False" that is set by my cloud function only. How can I set a rule to make sure that the "$purchaseToken" doesn't exists across all "$userId" with a…