Policies for `create` upsert actions
I have a
Question 1:
When upserting, there is data. Is there a way to authorize that? Maybe I'm relying too heavily on upserts.
Question 2:
In this case, I actually want to do authz that corresponds to the resource's parent's owner. I.e.
User
Site
I want to make it so that only the site's owner can create/upsert pages for that site, which does exist.
Is the solution here to create a generic
create do upsert? true endQuestion 1:
When upserting, there is data. Is there a way to authorize that? Maybe I'm relying too heavily on upserts.
Question 2:
In this case, I actually want to do authz that corresponds to the resource's parent's owner. I.e.
User
has_manySite
has_manyI want to make it so that only the site's owner can create/upsert pages for that site, which does exist.
Is the solution here to create a generic
add_page
The Elixir backend framework for unparalleled productivity. Declarative tools that let you stop wasting time. Use with Phoenix LiveView or build APIs in minutes for your front-end of choice.
2,193Members
Resources
Recent Announcements
Similar Threads
Was this page helpful?
