Skip to content

fix [properties-be] - allow view access for publicly shared entities #446

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
danielkweon merged 5 commits into from
Dec 4, 2025
Merged

fix [properties-be] - allow view access for publicly shared entities #446

danielkweon merged 5 commits into from
Dec 4, 2025

Conversation

@danielkweon
Copy link
Contributor

@danielkweon danielkweon commented Dec 4, 2025

fix [properties-be] - allow view access for publicly shared entities

  • Added fallback permission check in check_entity_view_permission - when get_users_access_level_v2 returns no access, we now check if the entity is publicly shared via SharePermission.isPublic
  • Uses existing macro_db_client::share_permission::get::get_*_share_permission functions to determine public visibility

@danielkweon
fix(properties-service): allow view access for publicly shared entities
b3b23ef 
When get_users_access_level_v2 returns no access, fall back to checking
if the entity is publicly shared via SharePermission.isPublic.

This fixes the issue where users couldn't view properties on publicly
shared documents because the permission check was too strict.
@danielkweon danielkweon self-assigned this Dec 4, 2025
@danielkweon danielkweon requested a review from a team as a code owner December 4, 2025 00:42
@linear
Copy link

linear bot commented Dec 4, 2025

M-5242 fix [properties-be] - view only entity properties

whutchinson98
whutchinson98 requested changes Dec 4, 2025
View reviewed changes
Copy link
Member

@whutchinson98 whutchinson98 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

get_users_access_level_v2 should be returning correct access level even if the item is public and not explicitly shared with you via channels.

All of our access middleware uses these calls and works as expected so not sure why you are having this bug.

whutchinson98
whutchinson98 reviewed Dec 4, 2025
View reviewed changes
whutchinson98
whutchinson98 reviewed Dec 4, 2025
View reviewed changes
@danielkweon
feat(properties): allow anonymous access to view public entity proper…
0affd07 
…ties

- Use initialize_user_context + attach_user middleware on properties router
- Add ensure_user_exists middleware to authenticated routes only
- GET entity properties allows anonymous access for public entities
@danielkweon danielkweon merged commit 7e4e852 into main Dec 4, 2025
34 checks passed
@danielkweon danielkweon deleted the daniel/m-5242-fix-properties-be-view-only-entity-properties branch December 4, 2025 22:25
nickisnoble pushed a commit that referenced this pull request Dec 5, 2025
@danielkweon @nickisnoble
fix [properties-be] - allow view access for publicly shared entities (#…
4d08b8e 
…446)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@whutchinson98 whutchinson98 whutchinson98 approved these changes

Assignees

@danielkweon danielkweon

Labels

cloud-storage

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@danielkweon @whutchinson98