@edgedev/firebase 1.9.21 → 1.9.23

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@edgedev/firebase",
-  "version": "1.9.21",
+  "version": "1.9.23",
   "description": "Vue 3 / Nuxt 3 Plugin or Nuxt 3 plugin for firebase authentication and firestore.",
   "main": "index.ts",
   "scripts": {

package/src/firestore.rules

@@ -1,6 +1,13 @@
 // #EDGE FIREBASE RULES START
 service cloud.firestore {
 
+  match /databases/{database}/documents/phone-auth/{phone} {
+    allow read: if false;
+    allow create: if false;  
+    allow update: if false; 
+    allow delete: if false; 
+  }
+
   match /databases/{database}/documents/events/{event} {
     allow read: if false;
     allow create: if false;  
@@ -224,6 +231,12 @@ service cloud.firestore {
           let skipPaths = ["collection-data", "users", "staged-users", "events", "rule-helpers"];
           let ruleHelper = get(/databases/$(database)/documents/rule-helpers/$(request.auth.uid)).data;
           return !(collectionPath in skipPaths) &&
+                 !(permissionCheck == "write" && 
+                    (
+                      ("stripeCustomerId" in request.resource.data && (!("stripeCustomerId" in resource.data) || resource.data.stripeCustomerId != request.resource.data.stripeCustomerId)) ||
+                      ("stripeSubscription" in request.resource.data && (!("stripeSubscription" in resource.data) || resource.data.stripeSubscription != request.resource.data.stripeSubscription))
+                    )
+                  ) &&
                   request.auth != null &&
                   collectionPath in ruleHelper &&
                   "permissionCheckPath" in ruleHelper[collectionPath] &&