Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Firestoreのルール設定 割と何でも出来てビビる/Firestore rule setting

kkznch
May 17, 2019
Technology
2
500

Firestoreのルール設定 割と何でも出来てビビる/Firestore rule setting

Webナイト宮崎 Vol.4
登壇枠で使用

参考URL
https://tegehoge.connpass.com/event/128502/

kkznch

May 17, 2019
Tweet

More Decks by kkznch

See All by kkznch
黒い画面へようこそ/Hello, black screen
kkznch
0
220
VueRouterとNuxtのルーティング/VueRouter and Nuxt Routing
kkznch
0
220
Vuexで何を管理する方が良い?/What is better to store in Vuex?
kkznch
1
550
LaraCSVで手軽にCSVを出力する/Easily generate CSV by LaraCSV
kkznch
0
1.3k
自社サービス チャット機能にFirebaseが導入されてた/Firebase was introduced to the chat function of our service
kkznch
0
890
SPA開発未経験者によるNuxt.jsを使った自社サービス開発 / Development of own service using Nuxt.js by inexperienced SPA development
kkznch
3
2.7k
Laravel Telescopeが便利そうな気がする/Laravel Telescope seems to be convenience
kkznch
1
800
Laravel Novaはなんだかいい感じらしい/Laravel Nova seems to be nice
kkznch
0
490
Laravel5.5的 継続的インテグレーション / Laravel 5.5 Continuous Integration
kkznch
3
2.9k

Other Decks in Technology

See All in Technology
自分のデータは自分で守る - あなたのCI/CDパイプラインをセキュアにする処方箋
jacopen
4
190
PHPerKaigi 2023に行こう! / Let's Attend PHPerKaigi 2023!
tomzoh
1
120
"Accelerate State of DevOps" ウェブアプリケーションのdeliveryを考えるとき、今何をすればいいのか
renjikari
3
270
可読性を高めるためのコードレビューテクニック
sbtechnight
PRO
0
460
How we build Ads Platform in Rust
mapbox_jp
1
200
PHP で学ぶ Cache の距離の話 / study_cache_with_php
hanhan1978
1
230
Swift 開発が楽になる道具たち
megabitsenmzq
1
270
Kafka Consumers at Naver
dongjin
0
190
Wrangler って何だ?-ちょっとよく分からないのでCloudflareのCLIツールを深掘りしてみる-
kentosuzuki
0
200
AWS CDKで作るCloudWatch Dashboard
harukasakihara
3
470
SNS投稿を使ってクラウド障害を検知してみた
sbtechnight
PRO
0
400
“品質”をみんなのものにするために行なっている入社者オンボーディング/Onboarding new members to think about "quality" together
mii3king
0
210

Featured

See All Featured
Git: the NoSQL Database
bkeepers
PRO
419
60k
Clear Off the Table
cherdarchuk
79
290k
The Art of Programming - Codeland 2020
erikaheidi
36
11k
Pencils Down: Stop Designing & Start Developing
hursman
114
10k
The Cult of Friendly URLs
andyhume
70
5.2k
Designing for humans not robots
tammielis
245
24k
Six Lessons from altMBA
skipperchong
15
2.4k
Fireside Chat
paigeccino
16
2k
How New CSS Is Changing Everything About Graphic Design on the Web
jensimmons
214
12k
Happy Clients
brianwarren
90
5.9k
Facilitating Awesome Meetings
lara
34
4.7k
Building an army of robots
kneath
300
41k

Transcript

  1. Firestoreͷϧʔϧઃఆ
    ׂͱԿͰ΋ग़དྷͯϏϏΔ
    גࣜձࣾRe:Build
    Յ਺ ါىʢ@kkznchʣ
    2019೥5݄17೔ʢۚʣ
    WebφΠτٶ࡚ Vol.4 ʙͯ͛FirebaseΛֶͼ͍ͨʙ

    View Slide

  2. ͚͚ͣΜ @kkznch
    Յ਺ ါى
    1990೥ͷԭೄੜ·Ε
    ిྗձࣾͷITΠϯϑϥɺηΩϡϦςΟ

    גࣜձࣾRe:BuildͰWebΤϯδχΞ

    View Slide

  3. ձࣾ঺հ
    • גࣜձࣾRe:Buildʢ2017೥11݄ʹઃཱʣ
    • ݱࡏͷࣾһ਺͸໊̑
    • ԭೄΛڌ఺ͱ͠ɺجຊతʹ͸Laravel΍Vue.jsΛ
    ࢖ͬͯडୗɾࣗࣾαʔϏε։ൃΛ͍ͯ͠Δ
    • ϦϞʔτϫʔΫɺࣗ༝ͳಇ͖ํΛਪ঑͍ͯ͠Δ

    View Slide

  4. Firestore

    View Slide

  5. Google͕ఏڙ͢ΔNoSQL DB

    View Slide

  6. ֊૚ܕσʔλߏ଄
    ΞΫηεϧʔϧΛઃఆͰ͖Δ

    View Slide

  7. ΋͠ϧʔϧΛઃఆ͠ͳ͍ͱ…

    View Slide

  8. Databaseͷϧʔϧ

    View Slide

  9. ֊૚͝ͱʹϧʔϧΛద༻
    usersͱɺͦͷதͷimagesʹ
    ରͯͦ͠ΕͧΕϧʔϧΛద༻Ͱ͖Δ
    service cloud.firestore {
    match /databases/{database}/documents {
    match /users/{userId} {
    // rules…
    match /images/{imageId} {
    // rules…
    }
    }
    }
    }

    View Slide

  10. ֊૚ҎԼશͯʹϧʔϧΛద༻
    service cloud.firestore {
    match /databases/{database}/documents {
    match /{users=**} {
    // rules…
    }
    }
    }
    usersͱͦͷԼҐશͯʹϧʔϧΛద༻

    View Slide

  11. allowϧʔϧྫ̍ʢςετ༻ʣ
    service cloud.firestore {
    match /databases/{database}/documents {
    match /{document=**} {
    allow read, write: if true;
    }
    }
    }
    υΩϡϝϯτશମʹৗʹread, writeΛallow͢ΔΑ

    View Slide

  12. allowϧʔϧྫ̎
    service cloud.firestore {
    match /databases/{database}/documents {
    match /{document=**} {
    allow read, write: if request.auth != null;
    }
    }
    }
    ϩάΠϯ͍ͯ͠ΔͳΒread, writeΛallow͢ΔΑ

    View Slide

  13. allowͷछྨ
    • read
    ‣ get
    ‣ list
    • write
    ‣ create
    ‣ update
    ‣ delete

    View Slide

  14. request, resource ม਺
    • request
    ‣ ΫϥΠΞϯτ͔ΒͷϦΫΤετʹؔ
    ͢Δ৘ใΛࢀরͰ͖Δ
    • resource
    ‣ ݱࡏͷDBͷঢ়ଶΛࢀরͰ͖Δ

    View Slide

  15. get(), exists() ϝιου
    • get()
    ‣ Ҿ਺ʹ༩͑ͨύε͔ΒΦϒδΣΫτ
    Λऔಘ͢Δ
    • exists()
    ‣ Ҿ਺ʹ༩͑ͨύεʹΦϒδΣΫτ͕
    ଘࡏ͢Δ͔bool஋Ͱฦ͢

    View Slide

  16. in ʹ͍ͭͯ
    • if x in y
    ‣ x͕഑ྻyʹؚ·Ε͍ͯΔ͔ΛνΣο
    Ϋ͢Δ

    View Slide

  17. ૊Έ߹ΘͤΔͱ͍͍ײ͡ʹͳΔ
    service cloud.firestore {
    match /databases/{database}/documents {
    function getRoom(roomId) {
    return get(/databases/{database}/documents/rooms/{roomId});
    }
    match /rooms/{roomId} {
    allow read, update: if request.auth != null
    && request.auth.uid in getRoom(roomId).data.users;
    }
    }
    }
    ྫɿϧʔϜϝϯόʔͰ͋Ε͹read, update͕Ͱ͖Δ

    View Slide

  18. ·ͱΊ

    View Slide

  19. ·ͱΊ
    • Firestore͸ϦιʔεຖʹೝՄͷઃఆ͕Ͱ͖Δ
    • allow, function, request/resourceม਺, get()/
    exists()ͳͲΛ૊Έ߹Θͤͯࡉ͔͍ઃఆ͕Մೳ
    • ద੾ʹϧʔϧΛઃఆͯ͠৘ใΛकΓ·͠ΐ͏

    View Slide