📦 directus / v6-archive

📄 create-privileges.md · 84 lines
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84# Create Privileges

> **Note:** Table names are case-sensitive
> **Note:**: Only admin has permission to access this endpoint

<span class="request">`POST` **/api/1.1/privileges/_[group-id]_**</span>

<span class="description">Create new table privileges for the specified user group</span>

<span class="arguments">Name</span> | Value | Description
------------------ | ----- | -----------
**group-id** _Integer_  |  <span class="required">Required</span>  |  The group `id` you wish to get the privileges from
**id** _Integer_           |   | Privilege's Unique Identification number
**group_id** _Integer_             |   | The `id` for the user group that should be assigned these privileges
**table_name** _String_           |    | The table name that these privileges should be applied to
**allow_add** _Integer_            |   | Permission to add/create entries in the table (See values below)
**allow_edit** _Integer_           |   | Permission to edit/update entries in the table (See values below)
**allow_delete** _Integer_        |   | Permission to delete/remove entries in the table (See values below)
**allow_view** _Integer_          |    | Permission to view/read entries in the table (See values below)
**allow_alter** _Integer_          |   | Permission to add/create entries in the table (See values below)
**nav_listed** _Boolean_           |   | If the table should be visible in the sidebar for this user group
**read_field_blacklist** _String_    | | A CSV of column names that the group can't view (read)
**write_field_blacklist** _String_  |  | A CSV of column names that the group can't edit (update)
**status_id** _String_              |  | State of the record that this permissions belongs to (Draft, Active or Soft Deleted)

### Example Request

```bash
$ curl -X POST -d "group_id=2&table_name='projects'&allow_edit=2&allow_delete=&write_field_blacklist='title,published_date'" \ https://instance--key.directus.io/api/1.1/privileges/1 \
  -u [user-token]:
```

```php
$privileges = $client->createPrivileges([
  'group_id' => 2,
  'table_name' => 'projects',
  'allow_edit' => 2,
  'allow_delete' => 0,
  'write_field_blacklist' => 'title,published_date'
]);
```

```javascript
client.createPrivileges({
  group_id: 2,
  table_name: 'projects',
  allow_edit: 2,
  allow_delete: 0,
  write_field_blacklist: 'title,published_date'
});
```

## Response

<span class="attributes">Attribute</span> | Description
--------|------------
**meta** _Meta Object_ | The Directus system metadata object that provides useful information not contained within the dataset itself [**Meta Object**: View Nested Attributes](/overview/objects-model.md#meta-object)
<span class="custom">**data**</span> _Privilege Object_ | <span class="custom">This data and its architecture is based on Directus Privileges's schema</span> [**Privilege Object**: View Nested Attributes](/overview/objects-model.md#privilege-object)

### Example Response

```json
{
  "meta": {
    "type": "item",
    "table": "directus_privileges"
  },
  "data": {
    "id": 2,
    "table_name": "projects",
    "group_id": 2,
    "read_field_blacklist": null,
    "write_field_blacklist": "title,published_date",
    "nav_listed": 1,
    "status_id": 0,
    "allow_view": 2,
    "allow_add": 1,
    "allow_edit": 2,
    "allow_delete": 0,
    "allow_alter": 1
  }
}
```