| sidebar_label | sidebar_position | description | keywords | ||||
|---|---|---|---|---|---|---|---|
Actions permissions |
7 |
Permissions for Hasura Actions |
|
import Tabs from '@theme/Tabs'; import TabItem from '@theme/TabItem'; import Thumbnail from '@site/src/components/Thumbnail';
As with the other fields in the GraphQL schema, users need to be given access to an action.
Head to the Actions -> [action-name] -> Permissions tab in the Console.
Hit Save to give the role permission to access the action.
Go to metadata/actions.yaml in the Hasura Project directory.
Update the definition of the insertAuthor action as:
- actions
- name: insertAuthor
definition:
kind: synchronous
handler: '{{ACTIONS_BASE_URL}}/insertAuthor'
permissions:
- role: user
- role: publisherSave the changes and run hasura metadata apply to set the permissions.
Action permissions can be set by using the create_action_permission Metadata API:
POST /v1/metadata HTTP/1.1
Content-Type: application/json
X-Hasura-Role: admin
{
"type": "create_action_permission",
"args": {
"action": "insertAuthor",
"role": "user"
}
}:::info Additional Resources
Introduction to Hasura Actions - View Recording.
:::