Fix: Update firestore rules and add error handling to NotesBrowser

html-proof · html-proof · commit 7931e8f0ef52 · 2026-01-30T00:26:15.000+05:30
diff --git a/firestore.rules b/firestore.rules
@@ -1,37 +1,42 @@
-rules_version = '2';
-
 service cloud.firestore {
   match /databases/{database}/documents {
     // Helper function to check if user is authenticated
     function isAuthenticated() {
       return request.auth != null;
     }
 
-    // Departments, Batches, Semesters, Subjects: Public Read/Write for Dev
+    // Departments, Batches, Semesters, Subjects: Public Read, Auth Write
     match /departments/{dept} {
-      allow read, write: if true;
+      allow read: if true;
+      allow write: if isAuthenticated();
     }
     
     match /batches/{batch} {
-      allow read, write: if true;
+      allow read: if true;
+      allow write: if isAuthenticated();
     }
     
     match /semesters/{sem} {
-      allow read, write: if true;
+      allow read: if true;
+      allow write: if isAuthenticated();
     }
     
     match /subjects/{sub} {
-      allow read, write: if true;
+      allow read: if true;
+      allow write: if isAuthenticated();
     }
 
-    // Folders: Public Read/Write for Dev
+    // Folders: Public Read, Auth Write
     match /folders/{folder} {
-      allow read, write: if true;
+      allow read: if true;
+      allow write: if isAuthenticated();
     }
 
-    // Notes: Public Read/Write for Dev
+    // Notes: Public Read, Auth Write (with owner check for strictness if needed, but keeping simple for now)
     match /notes/{note} {
-      allow read, write: if true;
+      allow read: if true;
+      allow create: if isAuthenticated();
+      allow update, delete: if isAuthenticated();
     }
   }
 }
diff --git a/src/components/public/NotesBrowser.tsx b/src/components/public/NotesBrowser.tsx
@@ -42,7 +42,12 @@ export default function NotesBrowser() {
         setSelectedSub(null);
         setSearchQuery("");
         setIsSearching(false);
-        setBatches(await getBatches(dept.id));
+        try {
+            setBatches(await getBatches(dept.id));
+        } catch (error) {
+            console.error("Failed to load batches", error);
+            setBatches([]);
+        }
     }
 
     async function handleBatchClick(batch: any) {
@@ -53,7 +58,12 @@ export default function NotesBrowser() {
         setSelectedBatch(batch);
         setSelectedSem(null);
         setSelectedSub(null);
-        setSemesters(await getSemesters(batch.id));
+        try {
+            setSemesters(await getSemesters(batch.id));
+        } catch (error) {
+            console.error("Failed to load semesters", error);
+            setSemesters([]);
+        }
     }
 
     async function handleSemClick(sem: any) {
@@ -63,7 +73,12 @@ export default function NotesBrowser() {
         }
         setSelectedSem(sem);
         setSelectedSub(null);
-        setSubjects(await getSubjects(sem.id));
+        try {
+            setSubjects(await getSubjects(sem.id));
+        } catch (error) {
+            console.error("Failed to load subjects", error);
+            setSubjects([]);
+        }
     }
 
     async function handleSubClick(sub: any) {
@@ -73,8 +88,14 @@ export default function NotesBrowser() {
         }
         setSelectedSub(sub);
         setLoading(true);
-        setNotes(await getNotes(sub.id));
-        setLoading(false);
+        try {
+            setNotes(await getNotes(sub.id));
+        } catch (error) {
+            console.error("Failed to load notes", error);
+            setNotes([]);
+        } finally {
+            setLoading(false);
+        }
     }
 
     const handleSearch = async (e: React.FormEvent) => {

Original file line number	Diff line number	Diff line change
`@@ -1,37 +1,42 @@`
`1`		`-rules_version = '2';`
`2`		`-`
`3`	`1`	`service cloud.firestore {`
`4`	`2`	`match /databases/{database}/documents {`
`5`	`3`	`// Helper function to check if user is authenticated`
`6`	`4`	`function isAuthenticated() {`
`7`	`5`	`return request.auth != null;`
`8`	`6`	`}`
`9`	`7`
`10`		`- // Departments, Batches, Semesters, Subjects: Public Read/Write for Dev`
	`8`	`+ // Departments, Batches, Semesters, Subjects: Public Read, Auth Write`
`11`	`9`	`match /departments/{dept} {`
`12`		`- allow read, write: if true;`
	`10`	`+ allow read: if true;`
	`11`	`+ allow write: if isAuthenticated();`
`13`	`12`	`}`
`14`	`13`
`15`	`14`	`match /batches/{batch} {`
`16`		`- allow read, write: if true;`
	`15`	`+ allow read: if true;`
	`16`	`+ allow write: if isAuthenticated();`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`match /semesters/{sem} {`
`20`		`- allow read, write: if true;`
	`20`	`+ allow read: if true;`
	`21`	`+ allow write: if isAuthenticated();`
`21`	`22`	`}`
`22`	`23`
`23`	`24`	`match /subjects/{sub} {`
`24`		`- allow read, write: if true;`
	`25`	`+ allow read: if true;`
	`26`	`+ allow write: if isAuthenticated();`
`25`	`27`	`}`
`26`	`28`
`27`		`- // Folders: Public Read/Write for Dev`
	`29`	`+ // Folders: Public Read, Auth Write`
`28`	`30`	`match /folders/{folder} {`
`29`		`- allow read, write: if true;`
	`31`	`+ allow read: if true;`
	`32`	`+ allow write: if isAuthenticated();`
`30`	`33`	`}`
`31`	`34`
`32`		`- // Notes: Public Read/Write for Dev`
	`35`	`+ // Notes: Public Read, Auth Write (with owner check for strictness if needed, but keeping simple for now)`
`33`	`36`	`match /notes/{note} {`
`34`		`- allow read, write: if true;`
	`37`	`+ allow read: if true;`
	`38`	`+ allow create: if isAuthenticated();`
	`39`	`+ allow update, delete: if isAuthenticated();`
`35`	`40`	`}`
`36`	`41`	`}`
`37`	`42`	`}`