I've got a permission query question. I'm trying t...
# prisma-whats-newl
lastmjs
03/05/2018, 8:59 PMI've got a permission query question. I'm trying to control who can set the relation for an author, for example the author of a blog post. I want the user creating the blog post to be able to be set as the author, but after that it cannot be changed. I'm confused as to how the permission query will work, because no blog post will have yet been created for me to check against
lastmjs
03/06/2018, 12:49 AMI think I've figured it out, but I'm not sure why it works
lastmjs
03/06/2018, 12:49 AM Copy code
query($user_id: ID!) {
SomeUserExists(filter: {
id: $user_id,
ownedCourses_every: {
author: {
id: $user_id
}
}
})
}lastmjs
03/06/2018, 12:49 AMI have a course, and the course has an author. This is the AuthorOnCourse.connect permission
lastmjs
03/06/2018, 12:50 AMIt seems to keep anyone but the true author from doing a connect
lastmjs
03/06/2018, 12:55 AMWell...it's not exactly passing my initial security checks
2 Views