-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
API owner is always admin in detail view #1854
Comments
@philippeluickx It happens when api doesn't have owner any more (user deleted account) or api was created by user, who sighed up via GitHub |
@marla-singer Thanks for checking. Why is the user then displayed in the Catalog, if it is one of the cases described by you? I'll post an example from apinf.io: same API in Catalog and in API profile. |
Good find, taking look |
@marla-singer I tried both cases described on latest develop, works as expected. Is this behaviour happening only in production? Checking nightly |
Nightly has same issue, trying to reproduce there. |
@jykae Let me know if you can't reproduce it, I'll try too |
@marla-singer On nightly, my own APIs with user (admin role) I am signed in show right both catalogue & API profile. Others work like described. |
@jykae What did you check? |
@marla-singer Ok, now got that locally. When I log in with that Github user the profile page shows the user right. |
Problematic line https://github.com/apinf/platform/blob/develop/apis/collection/helpers.js#L59 On the client we publish only currentUser when user is logged in, Meteor.users can be queried only on server side for security. |
On production. When in the catalog the user is someone "not admin", in the detailview it shows "admin".
The text was updated successfully, but these errors were encountered: