Open paulpopus opened 1 week ago
Removes any properties that result in false or an empty object {} from the /api/access endpoint
false
{}
/api/access
Improves security by not leaking out names of hidden or private collections
// before { "canAccessAdmin": false, "collections": { "posts": { "fields": { "text": { "create": { "permission": false }, "read": { "permission": true }, "update": { "permission": false }, "delete": { "permission": false }, "readVersions": { "permission": false } // ... // current { "collections": { "posts": { "fields": { "text": { "read": { "permission": true }, // ...
Removes any properties that result in
false
or an empty object{}
from the/api/access
endpointImproves security by not leaking out names of hidden or private collections