I have a functioning app where users can signup/login, upload images, and view images that have already been uploaded by themselves, they can’t see other’s images and vice versa. My rules are therefore UID of requesting user = uid of user who uploaded the image. Here is the code: Here are the corresponding realtime database rules. It should be a
Tag: firebase-security
Firestore Security Rules: use array_contains to determine authorization
Can I use the equivalent of array_contains in Firebase Security Rules? I have an Event class (corresponding to Event documents in the events collection). Each document has a subscribers list/array that contains the UIDs of all the users who should be able to query for this event: More explicitly, a user should be able to run the query: How do