Replies: 1 comment 3 replies
-
Hi. I am trying to understand your use case a bit better. Is it correct to say that you want to figure out the field on which - actions: ['*:find', '*:update']
effect: EFFECT_ALLOW
roles: ['User']
condition:
match:
expr: P.id == R.id |
Beta Was this translation helpful? Give feedback.
3 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
First off, thanks for an awesome product!
We are currently using Cerbos and the Cerbos mongoose orm adapter to create auth rules that filter our database. Is it possible to define rules in cerbos that only allow updates to certain database fields.
For example we would love to be able to do something like:
We would manage what to do with allowedFields in our backend, but it would be very useful to be able to define extra metadata in cerbos and have it passed through. "Outputs" comes close to this, but they aren't available in the QueryPlan output and we would like to avoid making two multiple requests to cerbos if we can avoid it.
Beta Was this translation helpful? Give feedback.
All reactions