firestore rule

AbhishekX2004 · Jul 2, 2024 · 18365f7 · 18365f7
1 parent ff928c8
commit 18365f7
Showing 1 changed file with 5 additions and 12 deletions.
diff --git a/firestore.rules b/firestore.rules
@@ -2,18 +2,11 @@ rules_version = '2';
 
 service cloud.firestore {
   match /databases/{database}/documents {
-
-    // This rule allows anyone with your Firestore database reference to view, edit,
-    // and delete all data in your Firestore database. It is useful for getting
-    // started, but it is configured to expire after 30 days because it
-    // leaves your app open to attackers. At that time, all client
-    // requests to your Firestore database will be denied.
-    //
-    // Make sure to write security rules for your app before that time, or else
-    // all client requests to your Firestore database will be denied until you Update
-    // your rules
     match /{document=**} {
-      allow read, write: if request.time < timestamp.date(2024, 7, 29);
+      // Allow only write operations
+      allow create: if true;
+      // Block all read operations
+      allow read, update, delete: if false;
     }
   }
-}
+}