CodeMirror/appwrite
1
0
Fork 0
mirror of synced 2024-06-18 18:54:55 +12:00
Code Issues Projects Releases Wiki Activity

More write ref updates

Browse source
This commit is contained in:
Jake Barnby 2022-08-05 18:00:56 +12:00
parent 08609af053
commit e8af744c97
4 changed files with 31 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
app/controllers/api/account.php
View file

@ -912,7 +912,9 @@ App::post('/v1/account/sessions/phone')
'$id' => $userId,
'$permissions' => [
'read(any)',
'write(user:' . $userId . ')'
'create(user:' . $userId . ')',
'update(user:' . $userId . ')',
'delete(user:' . $userId . ')',
],
'email' => null,
'phone' => $number,
@ -951,7 +953,9 @@ App::post('/v1/account/sessions/phone')
$token = $dbForProject->createDocument('tokens', $token
->setAttribute('$permissions', [
'read(user: ' . $user->getId() . ')',
'write(user:' . $user->getId() . ')'
'create(user:' . $user->getId() . ')',
'update(user:' . $user->getId() . ')',
'delete(user:' . $user->getId() . ')',
]));
$dbForProject->deleteCachedDocument('users', $user->getId());
@ -1045,7 +1049,9 @@ App::put('/v1/account/sessions/phone')
$session = $dbForProject->createDocument('sessions', $session
->setAttribute('$permissions', [
'read(user: ' . $user->getId() . ')',
'write(user:' . $user->getId() . ')'
'create(user:' . $user->getId() . ')',
'update(user:' . $user->getId() . ')',
'delete(user:' . $user->getId() . ')',
]));
$dbForProject->deleteCachedDocument('users', $user->getId());
@ -1146,7 +1152,9 @@ App::post('/v1/account/sessions/anonymous')
'$id' => $userId,
'$permissions' => [
'read(any)',
'write(user:' . $userId . ')'
'create(user:' . $userId . ')',
'update(user:' . $userId . ')',
'delete(user:' . $userId . ')',
],
'email' => null,
'emailVerification' => false,
@ -1190,7 +1198,9 @@ App::post('/v1/account/sessions/anonymous')
$session = $dbForProject->createDocument('sessions', $session-> setAttribute('$permissions', [
'read(user: ' . $user->getId() . ')',
'write(user:' . $user->getId() . ')'
'create(user:' . $user->getId() . ')',
'update(user:' . $user->getId() . ')',
'delete(user:' . $user->getId() . ')',
]));
$dbForProject->deleteCachedDocument('users', $user->getId());

8
app/controllers/api/functions.php
View file

@ -571,7 +571,9 @@ App::post('/v1/functions/:functionId/deployments')
'$id' => $deploymentId,
'$permissions' => [
'read(any)',
'write(any)'
'create(any)',
'update(any)',
'delete(any)',
],
'resourceId' => $function->getId(),
'resourceType' => 'functions',
@ -602,7 +604,9 @@ App::post('/v1/functions/:functionId/deployments')
'$id' => $deploymentId,
'$permissions' => [
'read(any)',
'write(any)'
'create(any)',
'update(any)',
'delete(any)',
],
'resourceId' => $function->getId(),
'resourceType' => 'functions',

10
app/controllers/api/teams.php
View file

@ -60,8 +60,10 @@ App::post('/v1/teams')
$team = Authorization::skip(fn() => $dbForProject->createDocument('teams', new Document([
'$id' => $teamId ,
'$permissions' => [
"read(team:{$teamId}",
"write(team:{$teamId}/owner)",
'read(team:' . $teamId . ')',
'create(team:' . $teamId . '/owner)',
'update(team:' . $teamId . '/owner)',
'delete(team:' . $teamId . '/owner)',
],
'name' => $name,
'total' => ($isPrivilegedUser || $isAppUser) ? 0 : 1,
@ -74,7 +76,9 @@ App::post('/v1/teams')
'$id' => $membershipId,
'$permissions' => [
"read(user:{$user->getId()}, team:{$team->getId()})",
"write(user:{$user->getId()}, team:{$team->getId()}/owner)",
"create(user:{$user->getId()}, team:{$team->getId()}/owner)",
"update(user:{$user->getId()}, team:{$team->getId()}/owner)",
"delete(user:{$user->getId()}, team:{$team->getId()}/owner)",
],
'userId' => $user->getId(),
'userInternalId' => $user->getInternalId(),

4
tests/e2e/Services/Realtime/RealtimeCustomClientTest.php
View file

@ -1060,7 +1060,9 @@ class RealtimeCustomClientTest extends Scope
'name' => 'Bucket 1',
'permissions' => [
'read(any)',
'write(any)'
'create(any)',
'update(any)',
'delete(any)',
]
]);