Back
Bucket create with wrong/too many Permissions
Hey ! I'm creating a bucket, that should have same id like my team.$id I would like this storage to have permissions - admins - can read and write all, rest of team members, can all create new document, each document will have own permissions as well.
when i do this:
TypeScript
const newBucket = await storage.createBucket(partnerUniqueId, `BUCKET_${partnerData.name.replace(/ /g, "_")}`, [
// All team members can write to this bucket
Permission.write(Role.team(partnerUniqueId)),
// All team admins can write and Read to this bucket
Permission.write(Role.team(partnerUniqueId, "admin")),
Permission.read(Role.team(partnerUniqueId, "admin")),
// all Admins can read from this bucket
Permission.write(Role.label("admin")),
Permission.read(Role.label("admin")),
], true);
I they all get automaticlly also UPDATE + DELETE permission, which i dont want to have. (like in the image attached)
How can i prevent this, no one of the team memebers should be able to update and delete.
TL;DR
Developers want to create a bucket with specific permissions but are seeing that the WRITE permission also includes UPDATE and DELETE. To prevent team members from having UPDATE and DELETE access, only grant WRITE permission without specifying UPDATE and DELETE. Write permission includes create, update, and delete by default. Update the code snippet to only include `Permission.write()` for the desired access level without specific mention of UPDATE and DELETE. Bucket create with wrong/too many Permissions
yes. write is an alias for create + update + delete
