Hey ! I have a collection with document level protection. My permission levels are something like Admin - Group[N] - SubGroup[N]
When the end user from SubGroup[N] creates a document, i need to make sure that the parent group can read/write it as well - but none of the parallele sub-groups. Since the user is Not a member of Group[N] - He cant Set these permissions.
What are the best practices doing so?
i thought of
- Save the document using the API key -> dangerouse -> security must be controlled on my app. to avoid such fake requests
- create an Appwrite function -> After creating, the document - the function will add the parents groups
Any other ideas?
Recommended threads
- get document with jwt unauthorized
Hello, I want to implement server side listDocument (listed) and getDocument (detail) with authentication JWT. For listDocument, authentication with JWT succes...
- User (role: guests) missing scope (accou...
Hello! Probably it is something stupid but I can't figure it out. Read a ton of posts already and still need help. Self hosted Appwrite. Simplest login in web a...
- Different setJwt & setSession SDK
What is different setJwt & setSession when using SDK