V8-archive: New permission level?

Created on 21 Jan 2020  Â·  5Comments  Â·  Source: directus/v8-archive

• Version of Directus
8.4.0

• PHP version
7.2.24

• MySQL version
mysqld Ver 5.7.28

• Webserver + version
apache 2.4.29

I researched the documentation, but did not find Permissions new level.

I don't know how to express it. I tried some translation tools, but I wasn't satisfied.
I will describe it and see if you can understand it:

Client wants to manage the permissions to assign a user or several users (any role that items in a collection by created user ) to be able to read or modify in a collection item. Because Directus only has to manage items in mine only (Created by or modified by) or Role only (Created by or modified by)

image

duplicate question
Source
picture andgar2010

All 5 comments

Hey @andgar2010 — I'm not sure I completely understand this new permission level. It sounds like our "Role Only" would work... but maybe I'm misunderstanding.

Could you use an example to describe what you're looking for?

benhaynes picture benhaynes on 22 Jan 2020

Hi @benhaynes
Give a example of User history:
A collection is composed of 3 actors which are: client, coordinator and agent (the coordinator and the agent being related to a place).

The client can create a request (new item in the collection with data: place id, date created in and created by client) and read by its created.

The coordinator can read only the assigned place and change the request only to assign or change the agent.

The agent can read and modify the service only when the coordinator has assigned a request to it.

andgar2010 picture andgar2010 on 23 Jan 2020

Ahh, this is a very complex edge-case then. You still might be able to accomplish this with the "My Role Only" permission and setting the "owner" through event hooks, or maybe even with custom interfaces.

Still, I'll close this as a duplicate of our more robust permission system that will likely be included in the Laravel API port we're working on now: https://github.com/directus/api/issues/511

benhaynes picture benhaynes on 23 Jan 2020
👍1

@benhaynes - Let's talk about this topic, but can permissions be granted for fields (CRUDE)?

andgar2010 picture andgar2010 on 24 Jan 2020

Yes, you can toggle field READ/WRITE access (and you can do so per status):

https://docs.directus.io/guides/permissions.html#field-level

benhaynes picture benhaynes on 24 Jan 2020
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

ondronix picture ondronix  Â·  3Comments
cdwmhcc picture cdwmhcc  Â·  3Comments
rijkvanzanten picture rijkvanzanten  Â·  3Comments
binary-koan picture binary-koan  Â·  3Comments
magikstm picture magikstm  Â·  3Comments