Override a routes for add or dissociate relation between collections

Bojan_Antonijevic · December 31, 2020, 9:33am

Hey team,

We want to add extra logic when someone ‘Dissociate the relationship’ or add a new relation

We figure out that we need to override routes:

router.delete('/accounts/:recordId/relationships/features', permissionMiddlewareCreator.delete(), (request, response, next) => {
    next();
});

router.post('/accounts/:recordId/relationships/features', permissionMiddlewareCreator.delete(), (request, response, next) => {
    next();
});

But we get error 403

[forest] 🌳🌳🌳  'delete' access forbidden on accounts

Because we disable ‘Allow record deletion’ on both collections:

The question is how to allow or avoid permissions in the code for those 2 routes?
We want to ‘Allow record deletion’ stay disable, so no one can delete an item accidentally because Dissociate and Delete buttons are really close to each other.

Thanks and Happy New Year

anon94532230 · December 31, 2020, 11:18am

Hi @Bojan_Antonijevic ! Currently we use the same permission for both actions (permissionMiddlewareCreator.delete()) to make it work we need to add a specific permission for the dissociate action.
I’ll push this feature request to our product team !

Bojan_Antonijevic · December 31, 2020, 11:21am

Thank you @anon94532230, I just changed permissionMiddlewareCreator.delete() to permissionMiddlewareCreator.list() and all works fine.

Topic		Replies	Views
Related data accessible actions : create & dissociate Feature suggestions	5	472	May 18, 2022
Related data deletion, how to ovveride it? Help me! howtos	7	708	January 25, 2021
Is it possible to allow only "delete" inhibiting the "disassociate" in a relationship? Help me! howtos	10	288	October 8, 2024
How to remove dissociate button from actions dd? Help me!	2	379	June 3, 2021
Remove 'Delete collection' from relation table layout Help me!	1	420	July 15, 2020

Override a routes for add or dissociate relation between collections

Related topics