rtmorgan
rtmorgan
PostsComments
BABetter Auth
Created by roze789 on 2/20/2025 in #help
How to check permissions on server side
What do the member records look like in table 'member'? Is there a valid record for a organization member with role 'admin'?
25 replies
BABetter Auth
Created by roze789 on 2/20/2025 in #help
How to check permissions on server side
Your earlier screenshots showed customizations for the existing role 'Admin'. Could you confirm that you merged the roles' permissions set with the default roles as covered in the custom permissions step 2 https://www.better-auth.com/docs/plugins/organization#create-roles ? It could be that the Admin role statements are not correctly established and evaluated.
25 replies
BABetter Auth
Created by roze789 on 2/20/2025 in #help
How to check permissions on server side
@roze789 could you provide more details on how you assigned the role and what role you assigned to the user you're authenticating as? thank you
25 replies
BABetter Auth
Created by roze789 on 2/20/2025 in #help
How to check permissions on server side
Also, the 'Access Control Usage' section of the Organization plugin's docs has an example that could help https://www.better-auth.com/docs/plugins/organization#usage With changes from that doc to account for getting headers from the PageServerLoad event : 
auth.api.hasPermission({
        headers: event.request.headers,
        body: {
            permission: {
                project: ["create"] // This must match the structure in your access control
            }
        }
    });
auth.api.hasPermission({
        headers: event.request.headers,
        body: {
            permission: {
                project: ["create"] // This must match the structure in your access control
            }
        }
    });
You should be able to use something similar with your 'makeOrder' action instead of the example's 'create' action.
25 replies