msb-public
/
pinball
mirror of https://github.com/flutter/pinball.git
1
0
Code Issues Projects Releases Wiki Activity

feat: adding firestore rules

Browse Source
pull/322/head
Tom Arra 3 years ago
parent 182e8f56cb
commit 852c14fa60
2 changed files with 33 additions and 5 deletions
Show Stats Download Patch File Download Diff File

9
firebase.json
Unescape View File

@ -1,11 +1,10 @@
{ {
"firestore": {
"rules": "firestore.rules"
},
"hosting": { "hosting": {
"public": "build/web", "public": "build/web",
"site": "ashehwkdkdjruejdnensjsjdne", "site": "ashehwkdkdjruejdnensjsjdne",
"ignore": [ "ignore": ["firebase.json", "**/.*", "**/node_modules/**"]
"firebase.json",
"**/.*",
"**/node_modules/**"
]
} }
} }

29
firestore.rules
Unescape View File

@ -0,0 +1,29 @@
rules_version = '2';
service cloud.firestore {
match /databases/{database}/documents {
match /leaderboard/{userId} {
function prohibited(initials) {
let prohibitedInitials = get(/databases/$(database)/documents/prohibitedInitials/list);
return initials in prohibitedInitials;
}
function inCharLimit(initials) {
return initials.size() < 4;
}
function isAuthedUser(auth) {
return auth.token.aud == "pinball-dev" && auth.token.firebase.sign_in_provider == "anonymous"
}
// Leaderboard can be read if it doesn't contain any prohibited initials
allow read: if !prohibited(resource.data.playerInitials);
// A leaderboard entry can be created if the user is authenticated,
// it's 3 characters long, and not a prohibited combination.
allow create: if isAuthedUser(request.auth) &&
inCharLimit(request.resource.data.playerInitials) &&
!prohibited(request.resource.data.playerInitials);
}
}
}
Write Preview
Loading…
Cancel
Save