-
-
Notifications
You must be signed in to change notification settings - Fork 203
Permissions
Permissions are being stored in the directus_permissions
table in the following structure:
Primary ID for the row.
Collection to which the permission applies. This is a foreign key to the directus_collections
table.
What role this permission applies to. This is a foreign key to the directus_roles
table.
If the collection has a status field in it, this field sets to which of these statuses the permission applies. This can only hold one status which should match the name in the status mapping option of the status field.
Decides what statuses the user can use for the item. This can be used to prevent the user from creating an item with the status published
, or update an item from published
too draft
. This field holds a CSV of names that should match the names in the status mapping option of the status field.
If the user can create a new item or not. Possible values:
-
none
– Can not create an item -
full
– Can create an item
If the user can read items from this collection. Possible values:
-
none
– Can't read any items -
mine
– Can only read items that have auser_created
type column that holds the primary key of the current user -
role
– Can only read items that have auser_created
type column that holds a primary key of a user that's in the same role as the current user -
full
– Can read all items
If the user can update the items in this collection. Possible values:
-
none
– Can't read any items -
mine
– Can only read items that have auser_created
type column that holds the primary key of the current user -
role
– Can only read items that have auser_created
type column that holds a primary key of a user that's in the same role as the current user -
full
– Can read all items
If the user can delete items from the collection. Possible values:
none
– Can't read any items
-
mine
– Can only read items that have auser_created
type column that holds the primary key of the current user -
role
– Can only read items that have auser_created
type column that holds a primary key of a user that's in the same role as the current user -
full
– Can read all items
If the user can comment on the current item by posting to the /activity
endpoint. Possible values are:
none
– Can't create comments
-
create
– Can create comments, but can't update or delete them -
update
– Can create and update comments, but can't delete them -
full
– Can create, update, and delete comments
If the user is required to leave a message stating what they updated when saving an item.
NOTE: this is not currently in use
Possible values:
* none
– Is not required to explain their changes
An optional CSV of fields that the user can't view. Every item in this CSV needs to be a valid field name as listed in directus_fields
.
An optional CSV of fields that the user can't write to. Every item in this CSV needs to be a valid field name as listed in directus_fields
.
Directus Internal Docs
Please see https://docs.directus.io for the usage guide.