Laksh22
Reputation: 197
Setting Firestore security rules with Collections generated at runtime
My Firestore database creates a new Collection whenever a new user Signs Up to my app. The name of the Collection is the username of the new user. I wanted to make the documents inside this collection to have restricted write access.
service cloud.firestore {
match /databases/{database}/documents {
match /User1/{info} {
allow read: if signedIn();
allow write: if isOwner(User1);
}
function signedIn() {
return request.auth != null;
}
function isOwner(userId) {
return request.auth.uid == userId;
}
}
}
This works if the current user is User1 but is not applicable to any new user that signs up. How do I add this Firestore Security Rule to every new user?
Upvotes: 0
Views: 431
Answers (1)
Jen Person
Reputation: 7546
I notice that the first rule matches to /User1/{info}, meaning it will match any path in the collection User1. Instead, if you use brackets, this value becomes a wildcard, meaning the match will work for any value. Check out the examples in the guide for more information.
service cloud.firestore {
match /databases/{database}/documents {
match /{username}/{info} {
allow read: if signedIn();
allow write: if isOwner(username);
}
function signedIn() {
return request.auth != null;
}
function isOwner(userId) {
return request.auth.uid == userId;
}
}
}
Upvotes: 4
Related Questions
- Firestore Security Rule for users with their own collection
- Firestore dynamically update security rules
- Firebase Security Rules to specific Collection?
- Firestore rules on subcollection
- Firestore Rule not applying to collection
- Can I add security rules for top-level collections in Firestore?
- Firestore public collection rules
- Firestore Security Rules for collection within a document
- Firestore collection group rules
- how to apply security rules to specific collections