共 (2) 个答案

1. # 1 楼答案

   根据关于Firestore Security Rules的正式文件：

   When writing queries to retrieve documents, keep in mind that security rules are not filters—queries are all or nothing. To save you time and resources, Cloud Firestore evaluates a query against its potential result set instead of the actual field values for all of your documents. If a query could potentially return documents that the client does not have permission to read, the entire request fails.

   因此，您不能使用安全规则过滤数据库中存在的文档

2. # 2 楼答案

   我将回答我自己的问题，因为我只是在做一些愚蠢的事情

   我的数据结构很好，规则的正确语法如下：

   match /clients/{clientId} {
   
     //Allow read if the user exists in the user collection for this client
     allow read: if resource.data.users[request.auth.uid] == true;
   
   }
   

   鉴于此：

   Cloud Firestore evaluates a query against its potential result set instead of the actual field values for all of your documents. If a query could potentially return documents that the client does not have permission to read, the entire request fails.

   此Android查询确实正确实现了规则的正确筛选器：

   db.collection("clients").whereEqualTo("users."+uid, true);
   

   我还没有正确实现适配器。我想看看是否可以先让正确的数据结构/规则/查询正常工作。我是从另一个侦听器调用它的，该侦听器侦听整个客户端集合（该规则失败），因此没有调用此查询。前面我将规则设置为（允许读取：如果为true；）最初的侦听器正在执行我的查询并返回正确的结果。这让我相信我的规则是错误的，而事实并非如此