You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If your access control functions rely on doc-based data to calculate which fields are able to be read / edited / updated, the admin UI will not reflect these changes. The access control functions will still work, however, the UI may not respond as you might expect.
We need to extend how permissions are calculated to include a layer that runs on the document level, which will improve the way that the admin UI responds to access control.
The way to do this is to extend our built-in /access operation so that it can take context or similar - where you can pass a document ID or a global slug, and the access will be run against that specific document or global.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Right now, Payload's Admin UI permissions are calculated only when a user changes within the admin UI.
This can present problems and make access control a bit harder to understand:
readat field level not working properly #1369If your access control functions rely on doc-based data to calculate which fields are able to be read / edited / updated, the admin UI will not reflect these changes. The access control functions will still work, however, the UI may not respond as you might expect.
We need to extend how permissions are calculated to include a layer that runs on the document level, which will improve the way that the admin UI responds to access control.
The way to do this is to extend our built-in
/accessoperation so that it can takecontextor similar - where you can pass a document ID or a global slug, and the access will be run against that specific document or global.Beta Was this translation helpful? Give feedback.
All reactions