GitHub user fangq edited a comment on the discussion: Understanding Admins
name/role and Members name/role settings
I have a follow up question regarding my above question 2.
I am using the following `validate_doc_update` handler to explicitly permit
database-specific admins to update the document
```
function(newDoc, oldDoc, userCtx, secObj) {
if('_admin' in userCtx.roles)
return;
if(!userCtx.name) {
throw({'forbidden': 'auth first before update something'});
}
if(!secObj.admins.names.includes(userCtx.name)) {
throw({'forbidden': 'user is not allowed'});
}
}
```
this works generally well. However, I noticed that if I log in with a
server-admin account, it rejects the update by throwing the "forbidden': 'user
is not allowed'" error.
is `_admin` automatically attached to al server-admin accounts? if not, what
exactly is `_admin`?
GitHub link:
https://github.com/apache/couchdb/discussions/5487#discussioncomment-12630601
----
This is an automatically sent email for [email protected].
To unsubscribe, please send an email to:
[email protected]
