open.source/manifold
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Rever firestore rules to existing settings

Browse Source
This commit is contained in:
Austin Chen 2022-03-07 21:19:43 -08:00
parent 20e55f829a
commit 5182f69477
1 changed files with 11 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
firestore.rules
View File

@ -5,16 +5,14 @@ service cloud.firestore {
match /databases/{database}/documents { match /databases/{database}/documents {
function isAdmin() { function isAdmin() {
return request.auth.uid == 'OTd2JFY7LOdvQg2ZQGYLUqrXAiD2' // Austin return request.auth.uid == 'igi2zGXsfxYPgB0DJTXVJVmwCOr2' // Austin
|| request.auth.uid == 'czxKSN1Z03Mzu7UqIio3ppM0eDt2' // David || request.auth.uid == '5LZ4LgYuySdL1huCWe7bti02ghx2' // James
} || request.auth.uid == 'tlmGNz9kjXc2EteizMORes4qvWl2' // Stephen
|| request.auth.uid == 'IPTOzEqrpkWmEzh6hwvAyY9PqFb2' // Manifold
function isAuthed() {
return request.auth != null
} }
match /users/{userId} { match /users/{userId} {
allow read: if isAuthed(); allow read;
allow update: if resource.data.id == request.auth.uid allow update: if resource.data.id == request.auth.uid
&& request.resource.data.diff(resource.data).affectedKeys() && request.resource.data.diff(resource.data).affectedKeys()
.hasOnly(['bio', 'bannerUrl', 'website', 'twitterHandle', 'discordHandle']); .hasOnly(['bio', 'bannerUrl', 'website', 'twitterHandle', 'discordHandle']);
@ -25,7 +23,7 @@ service cloud.firestore {
} }
match /contracts/{contractId} { match /contracts/{contractId} {
allow read: if isAuthed(); allow read;
allow update: if request.resource.data.diff(resource.data).affectedKeys() allow update: if request.resource.data.diff(resource.data).affectedKeys()
.hasOnly(['description', 'closeTime', 'tags', 'lowercaseTags']); .hasOnly(['description', 'closeTime', 'tags', 'lowercaseTags']);
allow update: if isAdmin(); allow update: if isAdmin();
@ -33,25 +31,25 @@ service cloud.firestore {
} }
match /{somePath=**}/bets/{betId} { match /{somePath=**}/bets/{betId} {
allow read: if isAuthed(); allow read;
} }
match /{somePath=**}/comments/{commentId} { match /{somePath=**}/comments/{commentId} {
allow read: if isAuthed(); allow read;
allow create: if request.auth != null; allow create: if request.auth != null;
} }
match /{somePath=**}/answers/{answerId} { match /{somePath=**}/answers/{answerId} {
allow read: if isAuthed(); allow read;
} }
match /folds/{foldId} { match /folds/{foldId} {
allow read: if isAuthed(); allow read;
allow update, delete: if request.auth.uid == resource.data.curatorId; allow update, delete: if request.auth.uid == resource.data.curatorId;
} }
match /{somePath=**}/followers/{userId} { match /{somePath=**}/followers/{userId} {
allow read: if isAuthed(); allow read;
allow write: if request.auth.uid == userId; allow write: if request.auth.uid == userId;
} }
} }