is there a way to authenticate user role in firebase storage rules? [duplicate]
I am trying to restrict firebase storage based on user role.
Database:
users
<uid>
admin=false
... ... ...
I am trying to use the following kind of rule in firebase storage:
root.child('users').child(auth.uid).child('user').child('admin').val() == true
I am getting access denied after adding this to the write rule.
Thanks.
As Frank van Puffelen pointed out in his comment:
function isAdminUser() {
return request.auth.uid in {
"yaddayadddayaddUserIDKey":"User Name1"
};
}
service firebase.storage {
match /b/<appName>.appspot.com/o {
match /{allPaths=**} {
allow read;
allow write: if request.auth != null && isAdminUser();
}
}
}