hi y'all, i keep getting `rpc error: | Permify | Page 1

cobalt grotto May 13, 2024, 10:58 AM

#

Hi @formal pawn, could you share your schema with us

formal pawn May 13, 2024, 4:52 PM

#

hi @cobalt grotto here's the schema:

#

https://pastebin.com/Rier73zE

Pastebin

permify schema - Pastebin.com

Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.

cobalt grotto May 14, 2024, 6:03 PM

#

Ok could you also send the access check request

#

This issue generally related with either: Broken access check request or non configured schema

#

broken access check request generally occurs because of wrong tenant ID, or sending the request with entity or permission that is not defined in the schema, etc.

formal pawn May 14, 2024, 6:32 PM

#

entity group {
relation admin @user
relation admin_readonly @user
relation department_head @user
relation user @user
}

entity tenant {
relation group @group

relation admin @group#admin @user
relation admin_readonly @group#admin_readonly @user
relation department_head @group#department_head @user
relation user @group#user @user

action _admin = admin
action _admin_readonly = admin_readonly
action _department_head = department_head
action _user = user

permission config_read = group.admin or group.admin_readonly or _admin or _admin_readonly
permission config_update = group.admin or _admin
}

entity department {
relation tenant @tenant
relation department_head @user

action _admin = tenant._admin
action _admin_readonly = tenant._admin_readonly
action _user = tenant._user

permission read = _admin or _admin_readonly or department_head
permission update = _admin
}

entity card {
relation group @group
relation tenant @tenant
relation department @department

permission read = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
permission update = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
}

entity transaction {
relation group @group
relation tenant @tenant
relation department @department

permission read = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
permission update = tenant._admin or tenant._admin_readonly or department._admin or department._admin_readonly
permission approve = tenant._admin or department._admin
}

entity expense {
relation group @group
relation tenant @tenant
relation department @department
relation owner @user

permission read = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
permission update = tenant._admin or department._admin
permission approve = tenant._admin or department._admin
permission submit = tenant._admin or department._admin or owner
}

entity user {
relation group @group
relation department @department
relation tenant @tenant

permission read = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
permission basic_read = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly or tenant._user or department._user
permission update = tenant._admin or tenant._admin_readonly or department.department_head or department._admin or department._admin_readonly
}

#hi y'all, i keep getting `rpc error: