What’s the best to implement more complex ACL conditions? Particularly if the access conditions depend on the fields (e.g. user can update a Post only if the user is one of the Admins of the Section that the Post belongs to or if the user is a SuperAdmin). Is there a way to do that through a validation callback function?
I think you can handle this scenario you described with one ACL rule per role and another per pointer. But yes. You can also define a beforeFind trigger to the class and handle more complex rules with code.
1 Like
Is there a good example around of the “one ACL rule per role and another per pointer” solution?
You can find some ACL examples in here: JavaScript Developers Guide | Parse
And pointer permissions in here: JavaScript Developers Guide | Parse