Firebase rules for authenticated users?

tatiang · May 9, 2021, 4:10am

I’ve read a bunch of posts here and elsewhere about Firebase rules but I can’t seem to get them to work for me.

Here are the rules I am trying to use:

// Checks auth uid equals database node uid
// In other words, the User can only access their own data

{
  "rules": {
    "posts": {
       "$uid": {
         ".read": "$uid === auth.uid",
         ".write": "$uid === auth.uid"
       }
     }
   }
}

I’d like to give a signed in user using this block access to only their stored data:

But I think the problem is that there is no $uid created by the SignUp block in the legacy interface.

So how should I adjust the rules?

Here’s how my Firebase database looks:

[database name]
     -[email address]
          -journal
                -[timestamp]

catsarisky · May 9, 2021, 10:02am

You just need to call the sign in block after sign up.

tatiang · May 9, 2021, 3:33pm

I use the SignIn block on a separate screen and I can successfully login as a user I created. But the user doesn’t have access to any of the data in Firebase from what I can tell.

catsarisky · May 9, 2021, 3:41pm

What data are you trying to call (exact cloud variable path) and what exactly do your rules say?

tatiang · May 9, 2021, 3:59pm

Okay, I think I got it. For some reason, I was overlooking the green UserID block because I initially didn’t need it. But once I secured my rules, I did need it.

Topic		Replies	Views
Firebase Security Rules - for super users Questions about Thunkable firebase	1	448	December 8, 2020
Firebase Rules Help Questions about Thunkable firebase , beginner	2	384	August 11, 2020
Firebase Auth Rules and Problems Questions about Thunkable firebase , auth	8	405	September 5, 2022
Firebase user account systems Questions about Thunkable login	6	539	June 24, 2020
WOW I can't believe I finally made it with Firebase security rules! Questions about Thunkable firebase	18	1190	December 5, 2020

Firebase rules for authenticated users?

Related Topics