Add rules for analytics collection

ShishKabab · ShishKabab · commit db530a159cc7 · 2021-11-18T14:23:19.000+01:00
diff --git a/firebase/firestore.rules b/firebase/firestore.rules
@@ -1212,5 +1212,43 @@ service cloud.firestore {
                 ;
             }
         }
+        match /personalAnalytics/{user} {
+            allow create: if 
+              // Type checks
+              (!('createdWhen' in request.resource.data.keys()) || request.resource.data.createdWhen == null || request.resource.data.createdWhen is timestamp) &&
+              request.resource.data.type is string &&
+              (!('str1' in request.resource.data.keys()) || request.resource.data.str1 == null || request.resource.data.str1 is string) &&
+              (!('str2' in request.resource.data.keys()) || request.resource.data.str2 == null || request.resource.data.str2 is string) &&
+              (!('str3' in request.resource.data.keys()) || request.resource.data.str3 == null || request.resource.data.str3 is string) &&
+              (!('float1' in request.resource.data.keys()) || request.resource.data.float1 == null || request.resource.data.float1 is float) &&
+              (!('float2' in request.resource.data.keys()) || request.resource.data.float2 == null || request.resource.data.float2 is float) &&
+              (!('float3' in request.resource.data.keys()) || request.resource.data.float3 == null || request.resource.data.float3 is float) &&
+              (!('time1' in request.resource.data.keys()) || request.resource.data.time1 == null || request.resource.data.time1 is timestamp) &&
+              (!('time2' in request.resource.data.keys()) || request.resource.data.time2 == null || request.resource.data.time2 is timestamp) &&
+              (!('time3' in request.resource.data.keys()) || request.resource.data.time3 == null || request.resource.data.time3 is timestamp) &&
+            
+            
+              // Ownership rules
+              request.auth.uid == user
+            ;
+            allow update: if 
+              // Type checks
+              (!('createdWhen' in request.resource.data.keys()) || request.resource.data.createdWhen == null || request.resource.data.createdWhen is timestamp) &&
+              (!('type' in request.resource.data.keys()) || request.resource.data.type is string) &&
+              (!('str1' in request.resource.data.keys()) || request.resource.data.str1 == null || request.resource.data.str1 is string) &&
+              (!('str2' in request.resource.data.keys()) || request.resource.data.str2 == null || request.resource.data.str2 is string) &&
+              (!('str3' in request.resource.data.keys()) || request.resource.data.str3 == null || request.resource.data.str3 is string) &&
+              (!('float1' in request.resource.data.keys()) || request.resource.data.float1 == null || request.resource.data.float1 is float) &&
+              (!('float2' in request.resource.data.keys()) || request.resource.data.float2 == null || request.resource.data.float2 is float) &&
+              (!('float3' in request.resource.data.keys()) || request.resource.data.float3 == null || request.resource.data.float3 is float) &&
+              (!('time1' in request.resource.data.keys()) || request.resource.data.time1 == null || request.resource.data.time1 is timestamp) &&
+              (!('time2' in request.resource.data.keys()) || request.resource.data.time2 == null || request.resource.data.time2 is timestamp) &&
+              (!('time3' in request.resource.data.keys()) || request.resource.data.time3 == null || request.resource.data.time3 is timestamp) &&
+            
+            
+              // Ownership rules
+              request.auth.uid == user
+            ;
+        }
     }
 }
diff --git a/firebase/functions/external/@worldbrain/memex-common b/firebase/functions/external/@worldbrain/memex-common
@@ -1 +1 @@
-Subproject commit 539d7741b101db8e6902a6ed7da0cbff4b4d0a3c
+Subproject commit be26664acb2a6a3696954088958bde1c917a83f2
diff --git a/tools/common.ts b/tools/common.ts
@@ -2,6 +2,7 @@ import StorageManager, { StorageBackend } from '@worldbrain/storex'
 import { DexieStorageBackend } from '@worldbrain/storex-backend-dexie'
 import inMemory from '@worldbrain/storex-backend-dexie/lib/in-memory'
 import { SharedSyncLogStorage } from '@worldbrain/storex-sync/lib/shared-sync-log/storex'
+import PersonalAnalyticsStorage from '@worldbrain/memex-common/lib/analytics/storage'
 import ActivityStreamStorage from '@worldbrain/memex-common/lib/activity-streams/storage'
 import ActivityFollowsStorage from '@worldbrain/memex-common/lib/activity-follows/storage'
 import ContentSharingStorage from '@worldbrain/memex-common/lib/content-sharing/storage'
@@ -28,7 +29,8 @@ export async function createStorage() {
             autoPkType: 'string'
         }),
         userManagement: new UserManagementStorage({ storageManager: serverStorageManager }),
-        personalCloud: new PersonalCloudStorage({ storageManager: serverStorageManager, autoPkType: 'string' })
+        personalCloud: new PersonalCloudStorage({ storageManager: serverStorageManager, autoPkType: 'string' }),
+        personalAnalytics: new PersonalAnalyticsStorage({ storageManager: serverStorageManager })
     }
     registerModuleMapCollections(serverStorageManager.registry, serverModules)
     await serverStorageManager.finishInitialization()
