Only has children .write rule [Firebase] -

-

given following rule:

   {     "rules": {         "users": {            "$uid": {               "name":{                 ".read": "auth != null && auth.uid == $uid",                 ".write": "auth != null && auth.uid == $uid"               }            }         }       }     }

is there way in firebase limit children can written object?

for example limit client writing object 1 attribute:

name {   "value": "value" }

i know there .validate , haschildren() doesn't prevent user legally write object under $uid undesired attributes.

nothing preventing client writing object follows:

name {   "value":"value",   "unwantedattribute":"wastingspace" }

is there equivalent hasthosechildrenonly()?

a .write rule determines who can write data location, not what data can write.

to determine structure of data written, you'll need .validate rule. in case can name required , must string with:

{   ".validate": "newdata.haschild('name')",   "name": {     ".validate": "newdata.isstring()"   },   "$other": {     ".validate": false   } }

the validate on top-level ensures new data must have name property. without this, can delete name, because deleting data not trigger validation.

the second validate ensures name string.

the third validation ensures child name rejected.


Comments

Post a Comment

Popular posts from this blog

Django REST Framework perform_create: You cannot call `.save()` after accessing `serializer.data` -

-
i have following viewset: class artistprofileviewset(viewsets.modelviewset): queryset = artistprofile.objects.all() serializer_class = artistprofileserializer def perform_create(self, serializer): if serializer.is_valid(): serializer.save() with following serializers: class simpleartisttrackserializer(serializers.hyperlinkedmodelserializer): class meta: model = artisttrack fields = (...my fields...) class artistprofileserializer(serializers.hyperlinkedmodelserializer): owners = userserializer(many=true, required=false) tracks = simpleartisttrackserializer(many=true, required=false) class meta: model = artistprofile fields = (...my fields...) i getting following error: assertionerror: cannot call `.save()` after accessing `serializer.data`.if need access data before committing database inspect 'serializer.validated_data' instead. i don't see editing serializer.data object. th...
Read more

Why does Go error when trying to marshal this JSON? -

-
i'm trying rather simple example of trying decode json file structs using golang. however, when attempting error that json: cannot unmarshal object go value of type []main.track which don't understand. here's code in question, , json can found here . package main import ( "encoding/json" "fmt" "net/http" "os" ) // tracks group of track types type tracks struct { tracks []track } // track represents singular track type track struct { name string url string artist artist } // artist represents single artist type artist struct { name string mbid string url string } func main() { url := "http://ws.audioscrobbler.com/2.0/?method=geo.gettoptracks&api_key=c1572082105bd40d247836b5c1819623&format=json&country=netherlands" response, err := http.get(url) if err != nil { fmt.printf("%s\n", err) os.exit(1) } de...
Read more