Firebase Storage 403 Error on delete

Question

I'm using the following rules:

service firebase.storage {
  match /b/xxxxxxx.appspot.com/o {
match /proUsers/{userId}/{allPaths=**} {
      allow read, write: if request.auth.uid == userId && request.resource.size < 2 * 1024 * 1024 && request.resource.contentType.matches('image/.*'); 
    }
  }
}

This is how I'm creating the ref for saving:

storageRef.child(`proUsers/${userId}/${prizeData.title}_${prizeData.createdAtTimeStamp}`).put(file, metadata)

Attempting to delete it I'm creating this Ref:

  const prizeImageRef = storageRef.child(`proUsers/${userId}/${prizeData.title}_${prizeData.createdAtTimeStamp}`)
  return prizeImageRef.delete()

I keep getting the 403 error:

code : "storage/unauthorized"

Firebase Storage: User does not have permission to access

Are my rules for deletion not correct?

someone else already solved it: http://stackoverflow.com/questions/38922124 — jasan, Sep 26 '16 at 03:31

score 1 · Answer 1 · answered Sep 26 '16 at 05:54

1

Yeah, I think the main issue here is that request.resource.contentType.matches('image/.*') is going to be null because you won't get the contentType on DELETE.

answered Sep 26 '16 at 05:54

Mike McDonald

15,609
2
46
49

Firebase Storage 403 Error on delete

1 Answers1