Add write permission to objects only if necessary #893
Labels
question
scope: permissions
stale
For marking issues as stale. Labeled issues will be closed soon if label is not removed.
Comments
leplatrem
added a commit
that referenced
this issue
Oct 1, 2020
leplatrem
added a commit
that referenced
this issue
Oct 6, 2020
leplatrem
added a commit
that referenced
this issue
Oct 6, 2020
leplatrem
added a commit
that referenced
this issue
Oct 26, 2020
Add ability to disable explicit permissions at object level (ref #893)
alexcottner
added
the
stale
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently, when an object is edited, the
writepermission is given to the creator/editor.This way, there's always someone with
writepermission.Problem, revoking permission on children is hard (#144).
One idea could be to add the
writepermission only if the user has nowritepermission on the parent.Examples:
writeon bucket → create sub collection → no write on sub collectionwriteon bucket → update sub collection → no write on sub collectionreadandcollection:createon bucket → create collection → write added on collectionreadandrecord:createon collection → create record → write added on recordPermissions specified via settings should be taken into account with this approach. Related #892
Careful with was done in #837
The text was updated successfully, but these errors were encountered: