Reputation: 119
How to read/write specific data on Firestore
I'm having some problem with the READ rules of Firestore currently
Here is my data structure
{
email: [email protected],
username: geekGi3L,
birthday: 1995/02/14,
photo: <firestore-download-url>
}
The rules currently I set is
service cloud.firestore {
match /databases/{database}/documents {
match /users/{user} {
allow read;
allow write: if request.auth.uid != null && request.auth.uid == user;
}
}
}
How could I set the rules to allow user to READ the specific fields like email and birthday only if request.auth.uid != null && request.auth.uid == uid while username and photo should be readable by every user?
Thank you <3
Upvotes: 1
Views: 123
Answers (1)
Reputation: 317362
In Firstore, there is no per-field access control for reading fields of a document. The most granular unit of access is the document. A user either has full access to read a document in its entirety, or they don't have any access at all.
If you need to change access per field, you'll have to split the fields of the document into multiple collections, with each collection having access control appropriate for the fields of the documents within. It's very common to have a split between public and private data like this.
Upvotes: 2
Related Questions
- How to allow only particular fields of a firestore document to be accessed publicly
- Firestore rules to restrict users to read/write only their data
- Firebase reading and writing data for users in one collection
- How to make certain data fields readable in a Firestore document
- Cloud Firestore Security Rules - only allow write to specific key in document
- how to access the requesting user's data in firestore
- Reading and writing in firestore only through cloud functions
- How to restrict users from reading data from Firestore documents?
- How to fetch user specific data from firestore?
- How only grant read access to data that own specific value in Firebase?