firebasedata-structuresgoogle-cloud-firestorerules
Missing or insufficient permissions firestore database rules
I'm self studying firestore and I could not figure out a way to only allow a user to update, delete or read only the collections added by them.
This is the structure I'm using:
I use firebase auth for user handing. I save the currentUser.uid as user_id in the database for each collection.
These are the rules I'm using
service cloud.firestore {
match /databases/{database}/documents {
match /tasks{
allow read, update, delete: if request.auth.uid == resource.data.user_id;
allow create: if request.auth.uid != null;
}
}
When I try to read/get the data I get Missing or insufficient permissions error.
I'm using the web api (JavaScript) for firestore. This is the code I'm using to read data.
function read() {
db.collection("tasks").get().then((querySnapshot) => {
querySnapshot.forEach((doc) => {
var newLI = document.createElement('li');
newLI.appendChild(document.createTextNode(doc.data().task));
dataList.appendChild(newLI);
});
});
}
Solution
the error was in my JavaScript I was getting all without filtering by user
function read() {
let taskColletion = db.collection("tasks");
taskColletion.where("user_id", "==", firebase.auth().currentUser.uid).get().then((querySnapshot) => {
querySnapshot.forEach((doc) => {
var newLI = document.createElement('li');
newLI.appendChild(document.createTextNode(doc.data().task));
dataList.appendChild(newLI);
});
});
}
- Firebase deploy functions - HTTP Error 403
- Optimizing Xcode Build time when using Firebase library
- How to add an empty Map into Firestore in flutter?
- Firestore doesn't replace map
- Where can I find the API KEY for Firebase Cloud Messaging?
- Not able to verify squarespace domain for non-www-prefixed url in firebase
- React Native Firebase Auth Persistence: Cannot import "getReactNativePersistence" from "firebase/auth/react-native"
- Argument of type 'string' is not assignable to parameter of type 'Auth'
- Firebase Phone Auth - RecaptchaVerifier Type Error
- Trigger Firebase Cloud Function on linkWithCredential()
- Event triggered when changing a user Firebase Authentication
- Firebase Crashlytics: Upload missing dSYMs to see crashes from 1 versions.(iOS)
- Kotlin How do I update the throughput when the application is closing?
- com.google.firebase.database.DatabaseException: Failed to convert value of type java.lang.Boolean to String What is it about?
- Return document collection as json from firestore
- flutterfire configure returns "zsh: command not found: flutterfire" on Mac
- How to add OnProgressListener for Firebase Storage File Downloadings?
- flutter fatal: early EOF invalid index-pack output
- Flutter get image from firebase storage and show it in app
- Property 'code' does not exist on type 'Error'
- Uncaught SyntaxError: Cannot use import statement outside a module (Using Firebase)
- "flutterfire configure" command won't let me type in a package name
- Firebase Hosting Custom Domain - site not "Go Live" after update DNS records by "CNAME records" method
- How to revoke access tokens on all files within specific folder/bucket in Firebase Storage
- packages have newer versions incompatible with dependency constraints
- http function can't update document
- Unable to use a Callable Cloud Function in Flutter
- Firestore error : Stream closed with status : PERMISSION_DENIED
- Flutter Firebase and Android issue - unable to initialise. Cannot find google-services.json with latest (sept 2020) migration instructions executed
- FirebaseCommandException: An error occured on the Firebase CLI when attempting to run a command