firestore PERMISSION DENIED Missing or insufficient permissions

Question

I am getting the Error      gettingdocuments com google firebase firestore FirebaseFirestoreException    PERMISSION DENIED  Missing or insufficient permissions    for the below code on else statement  db collection  users        get        addOnCompleteListener new OnCompleteListener lt QuerySnapshot gt               Override         public void onComplete  NonNull Task lt QuerySnapshot gt  task                 if  task isSuccessful                       for  DocumentSnapshot document   task getResult                           s document getId         gt      document getData                                       else                    s  Error getting documents    task getException

User · Answer

If someone lands here trying to access Firestore with a service-account:

I solved this issue by granting the service-account the Service Account User role in addition to the Cloud Datastore User role in the IAM settings of GCP.

User · Answer

I had this error with Firebase Admin  the solution was configure the Firebase Admin correctly following this link

User · Answer

time limit may be over rules version    2   service cloud firestore     match  databases  database  documents           This rule allows anyone on the internet to view  edit  and delete        all data in your Firestore database  It is useful for getting        started  but it is configured to expire after 30 days because it        leaves your app open to attackers  At that time  all client        requests to your Firestore database will be denied                Make sure to write security rules for your app before that time  or else        your app will lose access to your Firestore database     match   document             allow read  write  if request time  lt  timestamp date 2020 7  1                there  change date for nowadays  in this line   allow read  write  if request time  lt  timestamp date 2020 7  1

User · Answer

For me it was the issue with the date  Updated it and the issue was resolved   Allow read write    if request time  lt  timestamp date 2020  5  21     Edit  If you are still confused and unable to figure out what s the issue just have a look at the rules section in your firebase console

User · Answer

GO to rules in firebase and edit rules        provide a timestamp or set to false  My solution   service cloud firestore     match  databases  database  documents       match   document             allow read  write  if request time  lt  timestamp date 2021  8  18

User · Answer

Additionally  you may get this error if the collection reference from your code does not match the collection name on firebase   For example the collection name on firebase is users  but your referencing it with db collection  Users   or db collection  user    It is case sensitive as well   Hope this helps someone

User · Answer

npm i --save firebase  angular fire  in app module make sure you imported  import   AngularFireModule   from   angular fire   import   AngularFirestoreModule   from   angular fire firestore     in imports     AngularFireModule initializeApp environment firebase       AngularFirestoreModule      AngularFireAuthModule    in realtime database rules make sure you have          Visit  rules        rules           read   true        write   true         in cloud firestore rules make sure you have  rules version    2   service cloud firestore     match  databases  database  documents       match   document             allow read  write  if true

User · Answer

the problem is that you tried to read or write  data to realtime database or firestore before the user has be authenticated  please try to check the scope of your code  hope it helped

User · Answer

I also had the  quot Missing or insufficient permissions quot  error after specifying security rules  Turns out that the the rules are not recursive by default  i e  if you wrote a rule like match  users  userId      allow read  write  if request auth    null  amp  amp  request auth uid    userId     The rule will not apply to any subcollections under  users  userId   This was the reason for my error  I fixed it by specifying the rule as  match  users  userId   document         allow read  write  if request auth    null  amp  amp  request auth uid    userId     Read more at the relevant section of the documentation

User · Answer

For development only  Go in  Database - gt  Rules - gt  Change allow read  write  if false  to true   Note  This completely turns off security for the database  Making it world writable without authentication    This is NOT a solution to recommend for a production environment  Only use this for testing purposes

User · Answer

make sure your DB is not empty nor your query is for collection whom not exist

User · Answer

Your rules should be like this for this case however the message says that it is not the suggested way  but if you do this you can do inserts with no permission error  rules version    2   service cloud firestore     match  databases  database  documents       match   document             allow read  write

User · Answer

Check if the service account is added in IAM  amp  Admin https   console cloud google com iam-admin iam with an appropriate role such as Editor

User · Answer

The above voted answers are dangerous for the health of your database  You can still make your database available just for reading and not for writing     service cloud firestore       match  databases  database  documents        match   document              allow read  if true         allow write  if false

User · Answer

Go to Database -  Rules     Then changed below rules  service cloud firestore     match  databases  database  documents       match   document             allow read  write  if false                to below   service cloud firestore     match  databases  database  documents       match   document             allow read  write  if request auth    null

User · Answer

At this time  June 2020  by default the firebase is defined by time  Define the time to meet your needs  allow read  write  if request time  lt  timestamp date 2020  7  10    Please note  your DB still open to anyone  I suggest  please read the documentation and configure the DB the way that is useful for you

User · Answer

Go to firebase console   gt  cloud firestore database and add rule allowing users to read and write    gt  allow read  write

User · Answer

If you try in Java Swing Application   Go To Firebase Console  gt  Project Overview  gt  Project Settings  Then Go to Service Accounts Tab and Then Click on Generate New Private Key   You will get a  json file  place it in a known path  Then Go to My Computer Properties  Advanced System Settings  Environment Variables   Create New Path Variable GOOGLE APPLICATION CREDENTIALS Value with your path to json file

User · Answer

https   console firebase google com  Develop -  Database -  Rules -  set read  write -  true

User · Answer

So in my case I had the following DB rules  service cloud firestore     match  databases  database  documents       match  stories  story          function isSignedIn             return request auth uid    null                     allow read  write  if isSignedIn    amp  amp  request auth uid    resource data uid              As you can see there is a uid field on the story document to mark the owner  Then in my code I was querying all the stories  Flutter   Firestore instance            collection  stories              snapshots    And it failed because I have already added some stories via different users  To fix it you need to add condition to the query  Firestore instance            collection  stories              where  uid   isEqualTo  user uid             snapshots    More details here  https   firebase google com docs firestore security rules-query EDIT  from the link  Rules are not filters When writing queries to retrieve documents  keep in mind that security rules are not filters   queries are all or nothing  To save you time and resources  Cloud Firestore evaluates a query against its potential result set instead of the actual field values for all of your documents  If a query could potentially return documents that the client does not have permission to read  the entire request fails

[android] firestore: PERMISSION_DENIED: Missing or insufficient permissions

Examples related to android

Examples related to firebase

Examples related to google-cloud-firestore