// Paste into: Firebase Console → Firestore Database → Rules tab
// Replace YOUR_EMAIL with your actual email address.

rules_version = '2';
service cloud.firestore {
  match /databases/{database}/documents {

    match /sessions/current {
      allow read:  if true;
      allow write: if request.auth != null
                   && request.auth.token.email == "YOUR_EMAIL@jbnu.ac.kr";
    }

    match /session_history/{id} {
      allow read, write: if request.auth != null
                         && request.auth.token.email == "YOUR_EMAIL@jbnu.ac.kr";
    }

    match /logs/{id} {
      allow create: if true;
      allow read, update, delete: if request.auth != null
                                   && request.auth.token.email == "YOUR_EMAIL@jbnu.ac.kr";
    }
  }
}