web / lib/collections/datasets/access
lib/collections/datasets/access
Access control logic for the Datasets collection.
Defines read, create, update, and delete permissions based on:
- User role (admin has full access)
- Catalog ownership
- Public/private status of datasets and catalogs
Variables
read
constread:Access
Read access: Public datasets in public catalogs, or any dataset in owned catalogs.
create
constcreate:Access
Create access: Must be authenticated and have access to the target catalog.
update
constupdate:Access=checkCatalogOwnership
Update access: Only catalog owner or admins can update.
deleteAccess
constdeleteAccess:Access=checkCatalogOwnership
Delete access: Only catalog owner or admins can delete.
readVersions
constreadVersions:Access
ReadVersions access: Only admins can read version history.
Last updated on