`@deny('read')` Field Policy - Not Reading Data

zenstackhq / zenstack

Fullstack TypeScript toolkit enhances Prisma ORM with flexible Authorization layer for RBAC/ABAC/PBAC/ReBAC, offering auto-generated type-safe APIs and frontend hooks.

https://zenstack.dev

MIT License

1.83k stars 78 forks source link

`@deny('read')` Field Policy - Not Reading Data #1528

Closed milimyname closed 1 week ago

milimyname commented 1 week ago

Description and expected behavior Thank u for the great library. After #1452 which was solved in @2.1.1 but now members cannot get any data.

job @deny("read, update", space.memberships?[auth() == user && !(role in [owner, admin, roleManager])])

Environment (please complete the following information):

ZenStack version: 2.2 and 2.1
Prisma version: 5.15
Database type: Postgresql

ymc9 commented 1 week ago

Hi @milimyname , an unintended breaking change was fixed in release 2.2.3. Could you upgrade and give it a try?