发表新帖
发表新帖

Disable querying collection in Firebase Cloud Firestore with rules

后端 未结
关注
2 449
野的像风
野的像风 2021-01-04 01:25

I am using Firebase Cloud Firestore, and I want to modify my rules to restrict users from querying a collection.

This should not be allowed:

firesto
相关标签:
2条回答
  • 深忆病人
    2021-01-04 01:53

    You can break read rules into get and list. Rules for get apply to requests for single documents, and rules for list apply to queries and requests for collections (docs).

    match /users/{userId} {

  //signed in users can get individual documents
  allow get: if request.auth.uid != null;

  //no one can query the collection
  allow list: if false;
}
    0 讨论(0)
  • 攒了一身酷
    2021-01-04 01:57

    Give the following a try. I haven't been able to test it, so apologies if I've mistyped something.

    match /users/{userId} {
    allow read: if $(request.auth.uid) == $(userId);
}
    0 讨论(0)
 看不清?
提交回复
热议问题