The permission checks are necessary for your application without which anybody can edit/delete any message. These permission checks are in place to protect the application and to respect the permission policies you have applied for each role (user/moderator/channel_member/admin) etc.
This needs to be in place for v2 permissions as well where you define your custom roles.
Previously, you could enable/disable these permissions from the dashboard from here -
From your dashboard, Go to App -> Chat -> Chat Overview -> Chat Events ->
Authentication -> Disabled Permission Checks
Before (older dashboard settings)
But, the recent version of the dashboard has these settings removed as many apps had these permission checks disabled and had issues with permissions.
Authentication looks like this on your new dashboard -
Now, if you still want to modify these permission checks, you can do so from the API server-side using this command -
await client.updateAppSettings({
disable_permissions_checks: false
});
// From REST API, here is a cURL example
curl --location --request PATCH 'https://chat.stream-io-api.com/app' \
--header 'Accept: application/json' \
--header 'Stream-Auth-Type: jwt' \
--header 'Authorization: server-side-token' \
--header 'api_key: dk5rhumxbsff' \
--header 'Content-Type: application/json' \
--data-raw '{
"disable_auth_checks" : true,
"disable_permissions_checks" : false
}'
Comments
0 comments
Please sign in to leave a comment.