stackoom
  简体   繁体   中英

iOS Firebase/Firestore Permission Denied

 原文  2018-09-20 09:39:48       ios/ swift/ firebase/ google-cloud-firestore/ firebase-security

Question

I know this question has been frequently asked, however the solutions proposed did not solve it for me.

I tried to set-up a basic iOS Firestore app which writes some documents inside a collection. I followed the standard procedure, added the GoogleService-Info.plist to my project and I'm calling `FirebaseApp.configure() on launch.

My Firestore rules look like this: 

service cloud.firestore {
  match /databases/{database}/documents {
    match /{document=**} {
      allow read, write: if request.auth != null;
    }
  }
}

Now once I try to save something inside a collection Firebase returns me a Permission denied error.

If however my rules are like so: 

service cloud.firestore {
  match /databases/{database}/documents {
    match /{document=**} {
      allow read, write: if true;
    }
  }
}

The write is accepted. Obviously the request seems to not contain any auth information, but I can't find any additional documentation about this. Did I miss something?

Thanks for any help!

2 answers

solution1
 2  2018-09-20 10:00:56

My guess is that since you are not authenticating with the firebase authentication service the request lacks the auth information.

From firebase documentation:

Authentication One of the most common security rule patterns is controlling access based on the user's authentication state. For example, your app may want to allow only signed-in users to write data 

service cloud.firestore {
  match /databases/{database}/documents {
    // Allow the user to access documents in the "cities" collection
    // only if they are authenticated.
    match /cities/{city} {
      allow read, write: if request.auth.uid != null;
    }
  }
}

https://firebase.google.com/docs/firestore/security/rules-conditions

You could try the rule after authenticating via firebase authentication service and check if that passes the rule or not.

solution2
 2 ACCPTED  2018-09-20 10:26:55

if you are using authentication in your app then you should go with the 

service cloud.firestore {
  match /databases/{database}/documents {
    match /{document=**} {
      allow read, write: if request.auth.uid != null;
    }
  }
}

This will only works if you were added firebase authentication in your app but if you didn't added then it will return PermissionDenied

you can also use this method 

service cloud.firestore {
  match /databases/{database}/documents {
    match /{document=**} {
      allow read, write: if true;
    }
  }
}

but this method is not secure anyone can change your whole database at once and also Firebase won't recommend you to use this.

If you are in developing mode then use this and create your database but if you are going to production, you just need to change it to either 

allow read, write: if request.auth.uid != null;

or if you don't have authentication in your app. 

allow read, write: if false;

Hope this will help you to understand better.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Firebase AppCheck on iOS: 403 permission errors - PERMISSION_DENIED Firebase Database setValue: or removeValue failed: permission_denied iOS Firebase - Permission Denied Swift Firebase rules (permission denied) Firebase permission denied for Catalyst app Swift: Firebase read permission denied Firebase ios unable to get timestamp [Firebase/Database][I-RDB038012] Listener at /serverTimestamp failed: permission_denied Firebase Firestore iOS Multiple Models Firebase Database, permission denied (No rules) swift Firebase permission denied with correct auth data (apparently)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM