GunJack
Reputation: 1968
How to set different rules for different collection of users for accessing same firestore collection?
I have a collection of data, say, products and two different set of users merchants and users. How do I grant read write access to merchants on products and only read access to users?
match /users/{userId} {
allow read: if request.auth.uid == userId;
}
The above rule only defines access for a single users.
Upvotes: 0
Views: 40
Answers (1)
l1b3rty
Reputation: 3642
Starting point:
match /users/{userId} {
allow read: if request.auth.uid == userId;
}
match /products/{productid} {
// Anyone authenticated can read
allow read: if request.auth.uid != null;
// Only merchants can write
allow write: if get(/databases/$(database)/documents/users/$(request.auth.uid)).data.type == 'merchant'
}
Assuming users have field type with possible values ['user', 'merchant']
More info here
Upvotes: 1
Related Questions
- How to give access to Multiple Firestore Documents for Specific Users through Rules
- Firestore Security Rule for users with their own collection
- firebase firestore rules authenticated access to all collections except one
- How to set different rules for different collection
- Firestore rules to access collection that matches Auth uid
- How to have different rule for a specific collection in firebase firestore
- Multi-permission Firestore security rules
- How can we allow a particular User UID to have only access to a particular collection in Firestore security rules?
- Different security rules for different Firestore collections
- Firestore write security rule for specific user using auth names