Actions without the ability to control permissions

tanish · June 8, 2023, 9:39am

Hello everyone!

Need assistance with a small issue that I’m facing. I have built my Forest Admin with Node.JS, Express.JS, and MongoDB.

This is my package version.

“forest-express-mongoose”: “^9.2.0”,

There are these actions in my dashboard for which I cannot control permissions and it messes up our entire platform. For example, “Create a new shareholder” is permitted to everyone even though we have disabled “Create” globally.

Also, this action “Dissociate this relationship”. We have no way to control this action and it shows it to everyone.

Please assist us in managing this micro permissions for our platform.

Best,
Tanish

anon34731316 · June 8, 2023, 10:04am

Hello @tanish,

Thanks a lot for reaching out

shareholders and payment IDs are not proper collections, right? Only hasMany belonging to another collection?

If that’s the case, could you try to make the related field (shareholders/paymentIDs) read-only (in Organizations/Payouts collection settings > Fields (relationship))?

Let me know if that helps.
Cheers!

Topic		Replies	Views
Cannot change role collection permissions Help me!	2	323	July 22, 2021
Enable New Collection/Action For All Help me!	1	254	May 2, 2022
'browseEnabled' access forbidden on table Help me!	8	788	March 10, 2021
Is it possible to limit the access of a collection to relation only? Help me!	3	337	October 27, 2021
Can't create new resources Help me!	30	842	April 9, 2021

Actions without the ability to control permissions

Related Topics