Post update policy incorrectly rejects update

**ZModel**
```prisma
model User {
    id    Int     @id @default(autoincrement())
    role String
  
    @@allow('read', true)
    @@allow('update', auth().id == id || auth().role == 'superadmin' || auth().role == 'admin')
    @@deny('update', 
        (role == 'superadmin' && auth().id != id) 
        || (role == 'admin' && auth().id != id && auth().role != 'superadmin') 
        || (role != future().role && auth().role != 'admin' && auth().role != 'superadmin') 
        || (role != future().role && future().role == 'superadmin') 
        || (role != future().role && future().role == 'admin' && auth().role != 'superadmin')
    )
}
```

**TS**
```ts
const admin = await prisma.user.create({
    data: { role: 'admin' },
});

const user = await prisma.user.create({
    data: { role: 'customer' },
});

// the following line should succeed but got regjected
await enhance(prisma, { user: admin }).user.update({
    where: { id: user.id },
    data: { role: 'staff' },
});
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Post update policy incorrectly rejects update #825

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Post update policy incorrectly rejects update #825

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions