Open josefaidt opened 3 weeks ago
My first instinct was also to add the allow.resource authorization rule directly to my model's authorization rules, but then i realized that i could only give my function access to absolutely everything at schema level. I'd like to have more granular control too!
hey,👋 thanks for raising this! I'm going to transfer this over to our API repository for better assistance 🙂
Environment information
Description
I have a post confirmation auth trigger that I would like to use to create a UserProfile model when a user signs up.
Today I can configure access to "query", "mutate", or "listen", but in this case I would like to configure the function to only be allowed to execute the
createUserProfile
mutation