-
-
Notifications
You must be signed in to change notification settings - Fork 4.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Permission Denied CLP Role #1991
Comments
I'll have a look. |
Just added a test in the PR I'm working on, does that encompasses what you see? |
Thank you and yes it does, essentially creating an admin role with a new user, and then having an object that can only be deleted by the admin role. Only issue is that admins cannot delete the object. |
Seems that it works with the PR. |
* Fixes for Pointer Permissions - Fix bug that would leave public CLP when setting a new set of permissions - Sets empty permissions if missing to match parse.com API - Updates tests to reflect changes * Adds regression test for #1991 * Fit -> It
Fixed by #1989 |
@flovilmart I just updated my server to 2.2.13 and am still experiencing the same issue. My workaround for now is to add the user ids as pointers in CLPs, but obviously that is not a long term solution. Thanks. |
@dcdspace I'm experiencing the same issue. Did you resolve this? |
I have a role named "admin" in which users of that role should be able to delete objects. I have created a CLP for that role to allow only admins to delete, but I am getting "Permission Denied For This Action".
I have verified that the user is a member of the admin role, and that I am passing the session token properly by adding a user pointer CLP with delete permissions, and that works.
See the screenshot below of the CLP editor.
![screen shot 2016-06-05 at 7 16 59 pm](https://cloud.githubusercontent.com/assets/6096771/15808936/7d90e420-2b52-11e6-880c-6c347f9abb93.png)
The text was updated successfully, but these errors were encountered: