1rules_version = '2'; 2service firebase.storage { 3 match /b/{bucket}/o { 4 match /users/{userId}/{allPaths=**} { 5 allow read: if request.auth.uid == userId; 6 allow write: if request.auth.uid == userId && request.resource.size < 10 * 1024; 7 allow delete: if request.auth.uid == userId; 8 } 9 match /public/{allPaths=**} { 10 allow read: if true; 11 allow write: if request.auth.token.admin; 12 } 13 } 14} 15