blog: update out-of-date schema for saas-backend (#346)

zenstackhq · Aug 29, 2024 · 3ee33b3 · 3ee33b3
1 parent 21e604a
commit 3ee33b3
Showing 1 changed file with 8 additions and 8 deletions.
diff --git a/blog/saas-backend/index.md b/blog/saas-backend/index.md
@@ -69,14 +69,14 @@ Let’s take a look at all the permissions of the Post and how they could be exp
 
 the owner must be set to the current user, and the organization must be set to one that the current user belongs to.
 ```tsx
-@@allow('create', owner == auth() && org.members?[this == auth()])
+@@allow('create', owner == auth() && org.members?[id == auth().id])
 ```
 -   Update
 
     only the owner can update it and is not allowed to change the organization or owner
 
     ```tsx
-    @@allow('update', owner == auth() && org.future().members?[this == auth()] && future().owner == owner)
+    @@allow('update', owner == auth() && org.future().members?[id == auth().id] && future().owner == owner)
     ```
 -   Read
 
@@ -86,7 +86,7 @@ the owner must be set to the current user, and the organization must be set to o
         ```
     -   allow the member of the organization to read it if it’s public
         ```tsx
-        @@allow('read', isPublic && org.members?[this == auth()])
+        @@allow('read', isPublic && org.members?[id == auth().id])
         ```
     -   allow the group members to read it
         ```tsx
@@ -117,15 +117,15 @@ abstract model organizationBaseEntity {
     groups Group[]
 
     // when create, owner must be set to current user, and user must be in the organization
-    @@allow('create', owner == auth() && org.members?[this == auth()])
+    @@allow('create', owner == auth() && org.members?[id == auth().id])
     // only the owner can update it and is not allowed to change the owner
-    @@allow('update', owner == auth() && org.members?[this == auth()] && future().owner == owner)
+    @@allow('update', owner == auth() && org.members?[id == auth().id] && future().owner == owner)
     // allow owner to read
     @@allow('read', owner == auth())
     // allow shared group members to read it
-    @@allow('read', groups?[users?[this == auth()]])
+    @@allow('read', groups?[users?[id == auth().id]])
     // allow organization to access if public
-    @@allow('read', isPublic && org.members?[this == auth()])
+    @@allow('read', isPublic && org.members?[id == auth().id])
     // can not be read if deleted
     @@deny('all', isDeleted == true)
 }
@@ -152,7 +152,7 @@ model ToDo extends organizationBaseEntity {
 All the multi-tenant, soft delete and sharing features will just work automatically. Additionally, if any specialized access control logic is required for **`ToDo`**, such as allowing shared individuals to update it, you can effortlessly add the corresponding policy rule within the **`ToDo`** model without concerns about breaking existing functionality:
 
 ```tsx
-@@allow('update', groups?[users?[this== auth()]] )
+@@allow('update', groups?[users?[id == auth().id]] )
 ```
 
 ## How much Typescript/JavaScript code do I need to write