Closed brandonmp closed 7 years ago
In my case it's actually returning the data for the query, so it seems like permissions are being ignored when calling get
outside of viewer
It seems the inconsistent permission error is also happening when a query makes a request on a type that has a role based permission and the request was made unauthenticated.
Running the following query unauthenticated
{
viewer {
user {
id
}
}
}
Returns the following response
{
"data": {
"viewer": {
"user": null
}
}
}
I would have expected an error
The permissions issue has been fixed. As for the user returning null that was a design decision as throwing an error caused problems for some client tools like apollo. The null on user is a special case for the logged in user and will return null for unauthenticated requests. I will close this issue.
I have a type
Wayhome
withAuthenticated
permissions on all fields. the responses from unauthenticated requests vary depending on how I reach theType
.if they are in fact diff't responses, they should be normalized i think
this query
returns this error
however, this query:
returns this: