javascript - Firebase user write/read rules based on data objects -

javascript - Firebase user write/read rules based on data objects -

i'm using firebase , users set this:

{ "firebase-account-123": { "users": { "simplelogin:1": { "properties"{ "name": "john doe", "email": "user@email.com" } "children": { "simplelogin:2":{ "name": "user 2", "email": "user2@email.com" }, } }, "simplelogin:2": { "properties"{ "name": "user 2", "email": "user2@email.com", "disabled": false } } } }

i have "children" business relationship managers should have access to. i'm new , i'm trying solve permissions problems i'm having.

my rules allowing users read/write own data.

".read": "auth.uid == $userid", ".write": "auth.uid == $userid"

does know how create have ability write/read info (maybe in properties object) users listed in "children" object?

if want allow user-ids listed under children bucket read , write info well, seek using haschild() method in security rules.

for example, using same info construction outlined above:

{ "rules": { ".read": false, ".write": false, "users": { "$userid": { ".read": "auth.uid == $userid", ".write": "auth.uid == $userid", "properties": { ".read": "root.child('users').child(auth.uid).child('children').haschild($userid)" } } } } }

javascript firebase firebase-security firebasesimplelogin