The current user is not authorized to perform the requested action.

I am having user cart document with a respective user can read and update permission. Each cart document is 1-1 relationship with user and 1-many realtionship with product documents. When a user removes a product. I am changing the cart products like. this

  const removedProductId ="aadfasdfasdf";
  db.updateDocument({products: document.products.filter(p => p.$id !== removedProductId)}) //assume dbID, colID, docID is given

If there is single product in a cart. It is removing without throwing an error. otherwise it is saying the current user is not authorized to perform the requested action.

What are the permissions on all related collections and documents?

Respective user can read and update the document.

Actually It worked fine for sometime

When this error occurs. The realtime connection is closed.

Let's say. there are two product in a cart. If I remove any one of the product the error is thrown saying user is not authorized. but when i remove the single product it is working fine

I think patch request is the suspect. Because updateDocument is taking sometime

What about all related documents?

All authenticated users can read. But no users can update