hi all, I have been working on authorizations late...
# avo-2l
lemon-spoon-80671
03/17/2023, 3:38 PMhi all, I have been working on authorizations lately, following the docs here: https://docs.avohq.io/2.0/authorization.html
I achieved the behavior I wanted, everything is working fine until I deploy. There is an issue I cannot reproduce: I have two roles (data manager and user), data manager can create, edit and destroy a record while user can only view it. Locally, it works all as intended, but as soon as I deploy, when I log in as a user, for some records I see the edit and destroy icons, but when I click on them I get the notification "you are not authorized to perform this action".
It seems that I am missing something central in my implementation, but I cannot find out what. Has someone experienced a similar issue? How did you go about it? Thanks!
l
lemon-wall-20836
03/17/2023, 3:48 PMhey there
lemon-wall-20836
03/17/2023, 3:49 PMare you on the
prolemon-wall-20836
03/17/2023, 3:49 PMauthorization is a pro feature
l
lemon-spoon-80671
03/17/2023, 3:51 PMyes
l
lemon-wall-20836
03/17/2023, 3:51 PMare you 100% sure that the production env is using a pro feature?
do you use dashboards or a custom field/resource tool?
lemon-wall-20836
03/17/2023, 3:51 PMsomething to validate that?
l
lemon-spoon-80671
03/17/2023, 3:52 PMyes, I use dashboards and they work fine
l
lemon-wall-20836
03/17/2023, 3:52 PMok. cool
lemon-wall-20836
03/17/2023, 3:52 PMthanks for confirming that
lemon-wall-20836
03/17/2023, 3:52 PMhmm
lemon-wall-20836
03/17/2023, 3:53 PMok. then the next thing we should do is make sure that the user you think is logged is actually logged in and has the appropiate roles/permissions
lemon-wall-20836
03/17/2023, 3:53 PMso, you could log to the console or something the
userlemon-wall-20836
03/17/2023, 3:53 PMmaybe the user roles too or the properties you are setting the perimissions to true/false
lemon-wall-20836
03/17/2023, 3:54 PMI don't think this is an Avo issue, but something related to the authentication system
l
lemon-spoon-80671
03/17/2023, 3:55 PMis there a private chat where I can send you the link to my app, so that you could log in and see the behavior by yourself? I asked my colleague and we are both very surprised by the issue
l
lemon-wall-20836
03/17/2023, 3:56 PMwe could do that in the DM, but I don't know how I could help from looking at the public page
l
lemon-spoon-80671
03/17/2023, 3:56 PMI can provide a test login
lemon-spoon-80671
03/17/2023, 3:57 PMwhat surprises me is that in my current example, the editing icon (the pen) is shown, but when I go to the details page of the record, the "edit" button is not present
l
lemon-wall-20836
03/17/2023, 3:57 PMyes, but I can't see what the
userlemon-wall-20836
03/17/2023, 3:58 PMwhat I would do is log it to the console and watch that so see the user and the roles
lemon-wall-20836
03/17/2023, 3:58 PMhmmm
lemon-wall-20836
03/17/2023, 3:58 PMplease open a ticket on github with a screenshot or recording
lemon-wall-20836
03/17/2023, 3:58 PMthere might be some information that I missed here
l
lemon-spoon-80671
03/17/2023, 4:00 PMyes ok, I will do this
l
lemon-wall-20836
03/17/2023, 4:00 PMthank you!
lemon-wall-20836
03/17/2023, 4:00 PMl
lemon-spoon-80671
03/17/2023, 4:54 PMthank you for the help. I will have to look deeper into this issue, it seems there is something quite fishy... Once I have identified it and isolated the issue, if still needed, I will create the issue as you said. Thanks!
l
lemon-wall-20836
03/17/2023, 4:55 PMok. thanks for letting me know
lemon-wall-20836
03/17/2023, 4:55 PMthis is what I'd do
lemon-wall-20836
03/17/2023, 4:55 PMyou'll find out very quickly what's happening and where the issues comes from
l
lemon-spoon-80671
03/17/2023, 5:05 PMsuper, thank you very much. Your support is amazing an always very much appreciated