Reputation: 23
Firebase rules restrict writing not working
I am trying to restrict editing the "version" child in my database, but somehow rules are not working. Here is my code in rules:
{
"rules": {
".read": true,
".write": true,
"version": {
".write": false
}
}
}
In rules playground, it somehow skips the rule defined for specific child and reads rule for global.
Upvotes: 1
Views: 102
Answers (1)
Reputation: 512
What is happening here you defined rules for parent (globally) as true and you are trying to limit the access at its child level (locally) so by default it will take attributes of parent for access. Instead what you can do is if you want to allow access for reading for all childs and limit the write access to specific child you can define rules like this
{
"rules": {
".read": true,
"version": {
".write": false
}
}
}
so if you add any more childs and want to give them some special access
{
"rules": {
".read": true,
"version": {
".write": false
},
"data": {
".write": true
}
}
}
lets say you want to limit the read access of second child so instead of defining rules globally you will define them for each child
{
"rules": {
"version": {
".read": true,
".write": false
},
"data": {
".read": false,
".write": true
}
}
}
Upvotes: 2
Related Questions
- issues with firebase rules
- Firebase Realtime Database Security Rules for prevent create/delete not working
- Firebase Rules Write Permissions
- Firebase security rules problems
- Firebase database rules. Unable to write data
- Writing operation fails - firebase database rules
- Firebase Database Rules: can't write to database
- Firebase Rules permission denied but why?
- Firebase Realtime Database rules are disallowing write from authenticated user
- Permission denied with Firebase Database rules