(core) add some row-level access control

Summary: This implements a form of row-level access control where for a given table, you may specify that only owners have access to rows for which a given column has falsy values. For simplicity: * Only owners may edit that table. * Non-owners with the document open will have forced reloads whenever the table is modified. Baby steps... Test Plan: added tests Reviewers: dsagal Reviewed By: dsagal Differential Revision: https://phab.getgrist.com/D2633
2026-03-02 04:09:24 +00:00 · 2020-10-12 09:50:07 -04:00
parent 99ab09651e
commit a4929bde72
4 changed files with 214 additions and 28 deletions
--- a/app/server/lib/DocClients.ts
+++ b/app/server/lib/DocClients.ts
@@ -86,11 +86,19 @@ export class DocClients {
        if (!filterMessage) {
          sendDocMessage(curr.client, curr.fd, type, messageData, fromSelf);
        } else {
-          const filteredMessageData = filterMessage(curr, messageData);
-          if (filteredMessageData) {
-            sendDocMessage(curr.client, curr.fd, type, filteredMessageData, fromSelf);
-          } else {
-            this.activeDoc.logDebug(curr, 'skip broadcastDocMessage because it is not allowed for this client');
+          try {
+            const filteredMessageData = filterMessage(curr, messageData);
+            if (filteredMessageData) {
+              sendDocMessage(curr.client, curr.fd, type, filteredMessageData, fromSelf);
+            } else {
+              this.activeDoc.logDebug(curr, 'skip broadcastDocMessage because it is not allowed for this client');
+            }
+          } catch (e) {
+            if (e.code && e.code === 'NEED_RELOAD') {
+              sendDocMessage(curr.client, curr.fd, 'docShutdown', null, fromSelf);
+            } else {
+              throw e;
+            }
          }
        }
      } catch (e) {