AI助手支持GPT4.0

('{openid}'不支持查询指令，需要后端获取)？ 没太懂 云开发 数据库 安全规则详解的帖子('{openid}' does not support query commands and needs to be obtained from the backend)? I don’t know much about cloud development, databases, and security rules in detail.

//文档的结构{  _id:"handwork20201020",  _openid:"学生的openid", //学生为记录的创建者,  teacher:["老师1的openid","老师2的openid","老师3的openid"]}//安全规则{  "read": "auth.openid in doc.teacher || doc._openid == auth.openid",  "write": "auth.openid in doc.teacher || doc._openid == auth.openid",}

db.collection("集合id")  .where({    _openid: "{openid}",    teacher: _.elemMatch(_.eq("老师的openid")),  })  .get()  .then((res) => {    console.log(res);  });

db.collection("集合id")  .where({    _openid: "{openid}",    teacher: _.elemMatch(_.eq("老师的openid")),  })  .get()  .then((res) => {    console.log(res);  });

 .where({    teacher: _.elemMatch(_.eq("{openid}")),  })

https://developers.weixin.qq.com/community/business/doc/000eaa8ba2c9482d16ca7dab456c0d Cloud development security rules explain the official post in wechat college quoted the original 2. Assign permissions to some people. The role above can be specified as one-to-one, or many to one, or one to many. You can use the in or! (XX in []) operator. For example, you can assign multiple roles to a record (records created by students, and multiple teachers have the right to read and write): / / the structure of the document {_ id:"handwork20201020", _ Openid: "student's openid", / / student is the creator of the record, teacher: ["teacher 1's openid", "teacher 2's openid", "teacher 3's openid"]} / / security rule {"read":“ auth.openid in doc.teacher || doc._ openid == auth.openid ", "write": " auth.openid in doc.teacher || doc._ openid == auth.openid ",} it should be emphasized here that the where condition of the front-end (applet side) must be a subset of the security rule permissions. For example, we make the following query for the teacher on the applet side ('{openid}' does not support the query instruction and needs to be obtained by the back-end) db.collection ("set ID"). Where ({set ID ")_ openid: "{openid}", teacher: _ .elemMatch(_ . EQ ("teacher's openid"),}). Get (). Then ((RES) = >{ console.log (RES);}); previously, we have assigned the record permission to a certain person or several persons. How can we assign the record permission to a certain kind of person? For example, taxi software has drivers, passengers, administrators, developers, operation and maintenance personnel, marketing personnel and so on for data security, which requires us to create a new field in the database to store the type of user, such as{ role:3 }1, 2, 3, 4, etc., or{ isManager:true }boolean Type to indicate that the new field can be in the collection document of the query doc.role , or a separate set (that is, the set of storing permissions and the set to be queried are separated, which needs to use the get function to query across sets), which will be described in detail later. Not clear about this small program side, for the teacher to carry out the following query db.collection ("set ID"). Where ({set ID ")_ openid: "{openid}", teacher: _ .elemMatch(_ . EQ ("teacher's openid"),}). Get (). Then ((RES) = >{ console.log (RES);}); I tried, and got the lonely where condition, which seems not to be a subset of the security rule permissions, and was rejected. For the teacher side, this "{openid}" must be the teacher's, so he must not find the student record he wants. Is it a mistake or I understand and do it. .where({ teacher: _ .elemMatch(_ . EQ ("{openid}"),}) will also be refused without permission. Rookies don't quite understand here and ask the great God for advice.

回答：

"{openid}"

或者说，我不知道这个 auth.openid in doc.teacher