Menu
I want to update only some fields in the document so I found hasOnly function in the documentation here
but it's not working, for example, the rule below not working
function isValid(data){
return data.keys().hasOnly(['name','email','password'])
}
and when I update in client SDK
firestore.document("users/user_doc")
.update(mapOf(
"name" to "Jack",
"email" to "[email protected]",
"password" to "12345"
)).addOnCompleteListener {
if (it.isSuccessful){
Log.d("app", "success")
}else{
Log.d("app", "failed")
}
}
but it shows an error that missing permission
and also hasAll function always return true!
So does this function exist? Why it is not working?
Thanks.
998
asked Oct 24 '25 19:10
An alternative is:
allow update: if request.resource.data.diff(resource.data).changedKeys().hasOnly(["name", "email", "password"]);
New improvements to Firestore Security Rules
146
answered Oct 26 '25 14:10
Keep in mind that request.resource contains the document as it will appear if the write operation succeeds. It contains existing fields too, not just the ones that you're updating.
If there are more fields, you will need to check whether those are unmodified by the write operation. So you'd check that they have the same value in the request.resource and resource. I often use a function like this in my rules for that:
function isUnmodified(key) {
return request.resource.data[key] == resource.data[key]
}
If your document has one additional field created, you'd ensure that is unmodified with:
return data.keys().hasOnly(['name','email','password', 'created']) && isUnmodified('created')
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
