Is it possible to return caveats or metadata with a check #1806
Replies: 1 comment
-
If I understand correctly, you must return all orders a user can access with A bit unorthodox but you could add a caveat to the relation that grants the permission, you need to place it strategically in a relation that will result in caveating the Order for the user. This is probably one of those instances where the caveat in the permission could be useful. If you have multiple ways an order is owned, it may get trickier because you have to caveat all the relations through which the user can get access to an
Then when running |
Beta Was this translation helpful? Give feedback.
-
Hello.
We are looking into using SpiceDB. Our existing policy system maps cleanly, with one exception.
We can have arbitrary filters applied to our permissions.
For example,
A user has access to
Orders
With the following filterID
starts witha
We then calculate the sum of orders the user can see.
There are millions of orders; for performance, we need the
a
filter in the query.Would like to model it like a caveat but within information return somehow
Is there any guidance on how a use case like this should be modelled?
Beta Was this translation helpful? Give feedback.
All reactions