firetable-hostbot/firebase-rules.json at master · mxew/firetable-hostbot · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
{
  "rules": {
    ".write": false,
    ".read": false,
    "chatFeed": {
      ".read": true,
      "$comment": {
        ".read": true,
        ".write": "(auth.uid != null && (newData.child('chatID').exists() || root.child('users/' + auth.uid + '/hostbot').val() == true)&& ((!data.exists() || root.child('users/' + auth.uid + '/hostbot').val() == true || newData.child('hidden').val() == true) && root.child('banned/' + auth.uid).val() != true))",
        "chatID":{
          ".validate": "root.child('chatData/' + newData.val() ).exists() && !root.child('chatData/' + newData.val()+ '/feedID').exists()"
        },
        "hidden":{
             ".validate": "(auth.uid != null && (root.child('users/' + auth.uid + '/supermod').val() == true || root.child('users/' + auth.uid + '/mod').val() == true))"
          }
      }
    },
    "chatData": {
      ".read": false,
      "$comment": {
        ".read": "root.child('banned/' + auth.uid).val() != true && (root.child('blocks').child(auth.uid).child(data.child('id').val()).val() != true && root.child('blocks').child(data.child('id').val()).child(auth.uid).val() != true)",
        ".write": "(auth.uid != null && root.child('banned/' + auth.uid).val() != true && (newData.child('id').val() == auth.uid || data.child('id').val() == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true))",
        ".validate": "newData.child('txt').isString() && newData.child('txt').val().length > 0 && newData.child('txt').val().length <= 240",
        "card": {
          ".validate": "(root.child('cards/' + newData.val() + '/owner').val() == auth.uid) || (root.child('users/' + auth.uid + '/hostbot').val() == true)",
        },
        "name": {
          ".validate": "(root.child('users/' + auth.uid + '/username').val() == newData.val()) || (auth.uid == newData.val())",
        },
        "feedID": {
          ".validate": "root.child('chatFeed/' + newData.val() + '/chatID' ).val() == $comment",
        }
      }
    },
    "nameClaim": {
      "$uname": {
        ".write": "(auth.uid != null && (newData.val() == auth.uid) || root.child('users/' + auth.uid + '/hostbot').val() == true && root.child('banned/' + auth.uid).val() != true)",
        ".validate": "(!data.exists() || root.child('users/' + data.val() + '/username').val() !== $uname) && $uname.matches(/^[0-9a-zA-Z_]{1,22}$/)"
      }
    },
    "thescreen": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "dance": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "lights": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "cardSpecial": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "theme": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "globalArtists": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "globalTracks": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true",
      "$trackid":{
         ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true || root.child('users/' + auth.uid + '/mod').val() == true || root.child('users/' + auth.uid + '/supermod').val() == true"
      }
    },
    "globalTrackRaws": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "globalDjs": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "cards": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true",
      ".indexOn": ["owner"]
    },
    "cardCount": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "tagUpdate": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "songToPlay": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "songHistory": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true",
      "$histitem": {
        ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true || root.child('users/' + auth.uid + '/mod').val() == true || root.child('users/' + auth.uid + '/supermod').val() == true"      }
    },
    "newMusic": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "colors": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "queues": {
      ".read": true,
      "$uid": {
        ".read": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
        ".write": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
        ".indexOn": "cid"
      }
    },
    "playlists": {
      ".read": false,
      "$uid": {
        ".read": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
        ".write": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
        "$listid": {
          "list":{
            ".indexOn": "cid"
          }
        }
      }
    },
    "blocks": {
      ".read": false,
      "$uid": {
          ".read": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
          ".write": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true) && root.child('banned/' + auth.uid).val() != true",
            "$blockedID":{
              ".validate": "root.child('users/'+ $blockedID + '/mod').val() !== true && root.child('users/'+ $blockedID + '/supermod').val() !== true && root.child('users/'+ $blockedID + '/hostbot').val() !== true"
            }
      }
    },
    "table": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "waitlist": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "playdex": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },

    "playlimit": {
      ".read": true,
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true"
    },
    "banned": {
      ".read": "root.child('users/' + auth.uid + '/supermod').val() == true || root.child('users/' + auth.uid + '/hostbot').val() == true",
      ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true",
      "$uid": {
        ".read": "($uid == auth.uid || root.child('users/' + auth.uid + '/hostbot').val() == true)",
        ".write": "root.child('users/' + auth.uid + '/hostbot').val() == true || root.child('users/' + auth.uid + '/supermod').val() == true",
        ".validate": "(root.child('users/' + $uid + '/supermod').val() != true) && ($uid != 'OiJ7rcoNaNdvk3KlFGUJx1Fqjer2')"

      }
    },
    "users": {
      ".read": true,
      ".indexOn": ["status", "username"],
      "$uid": {
        "status": {
          ".write": "auth.uid == $uid && (root.child('banned/' + auth.uid).val() != true || newData.val() == false)"
        },
        "idle": {
          ".write": "auth.uid == $uid && (root.child('banned/' + auth.uid).val() != true)",
            "since": {
                ".validate": "newData.val() == now"
            }
        },
        "joined": {
          ".write": "auth.uid == $uid",
          ".validate": "newData.val() == now && !data.exists()",
        },
        "mod": {
          ".write": "root.child('users/' + auth.uid + '/supermod').val() == true"
        },
        "supermod": {
          ".write": "false"
        },
        "hostbot": {
          ".write": "false"
        },
        "selectedList": {
          ".write": "auth.uid == $uid && root.child('banned/' + auth.uid).val() != true"
        },
        "username": {
          ".write": "auth.uid == $uid && root.child('banned/' + auth.uid).val() != true",
          ".validate": "(root.child('nameClaim/' + newData.val() ).val() == auth.uid)"
        }
      }
    }
  }
}