How to allow only particular fields of a firestore document to be accessed publicly

google-cloud-firestore firebase-security

Solution 1:

You can't. Security rules only work on a document-level basis, so you can't restrict read access to specific fields.

If you want to do something like you're suggesting, you'll probably need to restructure your data so that your non-public data is in a separate document. Most likely you'll want to do this by putting your private data in a subcollection. So you might end up with something like this...

collection: [
  document: {
    y: 'y'
    private-collection: [
      document: {
        x: 'x'
      }
    ]
  }
]

And then you'd set up your security rules like:

service cloud.firestore {
  match /databases/{database}/documents {
    match /collection/{document} {
      allow read: if true;
      match /private-collection/{otherdoc} {
        allow read: if someOtherRuleThatYouAddHere();
      }
    }
  }
}

Related

"select * from table" vs "select colA, colB, etc. from table" interesting behaviour in SQL Server 2005
Synchronize Scroll Position of two RichTextBoxes?
Spring 4.2.3 and fasterxml Jackson 2.7.0 are incompatible
DateTimeFormatter month pattern letter "L" fails
get line number for XElement here
MediaPlayer.setDataSource causes IOException for valid file
How to explain the reverse of a sequence by slice notation a[::-1]
Using jQuery to search a string of HTML
IllegalArgumentException: width and height must be > 0 while loading Bitmap from View
How do I escape % from python mysql query
How to fix Invalid byte 1 of 1-byte UTF-8 sequence
.NET : How do you get the Type of a null object?