This repository has been archived by the owner on Feb 13, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
firestore.rules
80 lines (68 loc) · 2.2 KB
/
firestore.rules
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
rules_version = '2';
service cloud.firestore {
match /databases/{database}/documents {
function isAuth() {
return request.auth != null;
}
match /story__realtime/{story} {
allow read: if isAuth() && resource.data.author == request.auth.uid;
allow create: if isAuth();
allow update: if (request.resource.data.diff(resource.data).affectedKeys().hasOnly(['isFavorite']));
allow delete: if false;
match /images/{image} {
allow read: if isAuth() && get(/databases/$(database)/documents/story__realtime/$(story)).data.author == request.auth.uid;
allow create: if isAuth();
allow update: if false;
allow delete: if false;
}
match /parts/{part} {
allow read: if isAuth() && get(/databases/$(database)/documents/story__realtime/$(story)).data.author == request.auth.uid;
allow create: if isAuth();
allow update: if false;
allow delete: if false;
}
}
match /story__cache_serving/{story} {
allow get: if isAuth();
allow list: if false;
allow write: if false;
match /images/{image} {
allow get: if isAuth();
allow list: if false;
allow write: if false;
}
match /parts/{part} {
allow get: if isAuth();
allow list: if false;
allow write: if false;
}
}
match /story__forms_serving/{form} {
allow read: if isAuth();
allow write: if false;
}
match /story__questions_serving/{question} {
allow read: if isAuth();
allow write: if false;
match /choices/{choice} {
allow read: if isAuth();
allow write: if false;
}
}
match /user__stats/{r} {
allow get: if isAuth() && r == request.auth.uid;
allow list: if false;
allow write: if false;
}
match /user__stories/{uid} {
allow get: if isAuth() && uid == request.auth.uid;
allow write: if false;
match /cache/{storyId} {
allow read: if isAuth() && uid == request.auth.uid;
allow create: if false;
allow update: if (request.resource.data.diff(resource.data).affectedKeys().hasOnly(['isFavorite']));
allow delete: if false;
}
}
}
}