是否可以只允许推入数组字段(在文档中),但阻止写入该数组中的任何现有值?
myDocument: {
myArray: [
"value1",
"value2"
]
}
我想在
"value3"myArray但我想阻止除上述之外的
myArray是否有办法接受
myArrayarrayUnion因为永远不会太晚!
这是我的解决方案!为了仅允许使用 arrayUnion 更新字段,我使用了两件事:
.size()request.resource.data.offers.size() == resource.data.offers.size() + 1.hasAllrequest.resource.data.offers.hasAll(resource.data.offers)提供的最终版本是我的数组,他们只接受
arrayUnion match /swaps/{swapId} {
allow create: if request.auth != null;
allow read: if request.auth != null;
allow update: if (
request.resource.data.offers.size() == resource.data.offers.size() + 1
&& request.resource.data.offers.hasAll(resource.data.offers)
);
allow delete: if false;
}
这是最全面的解决方案,可以确保以下几点:
只添加了一项
该项目已添加到数组的末尾
现有数组项尚未更改或重新排列
match /winners/{gameId} {
// Not really important stuff:
allow create: if false; // I'm creating documents with a cloud function, don't want users to create them with random data.
allow delete: if false;
allow read: if request.auth != null;
// THE IMPORTANT STUFF:
allow update: if
request.auth != null // Not really important to the question, but I always make sure users are authenticated.
&&
(
request.resource.data.winners.size() == resource.data.winners.size() + 1 // Ensure only one item was added.
&&
resource.data.winners == request.resource.data.winners[0:resource.data.winners.size()] // This is the most important part - make sure the original array is contained in the first part of the new array. See notes below for more info how it works.
);
}
关键是从新列表创建一个子列表并将其与原始列表进行比较(数组在安全规则中称为列表)。子列表需要与原始列表的长度相同,因此我们使用 range 运算符
[i:j]0这是我基于@Trev14 答案的解决方案。
let stored = resource.data.myArray;
let incoming = request.resource.data.myArray;
return incoming is list
&& incoming.size() == stored.size() + 1
&& (stored.size() == 0 || incoming[0:stored.size()] == stored)
在
stored.size() == 0incoming[0:0]stored