Discrimination of user goups when using math() in DQL

Poolshark · April 11, 2023, 8:18am

I recently found a rather strange policy regarding the math() function in DQL when using ACL. I have set up a user lambda which is used by custom resolvers when performing DQL requests. Furthermore, I’ve set up 3 groups

readAll → can read all predicates
modifyAll → can modify all predicates
writeAll → can write all predicates

The lambda user is part of these 3 groups.

I want to emphasise that I’ve checked the top box in Ratel to make sure that ALL available predicates are selected for the specific groups

Now, when running any DQL query with math(), math gets ignored. If I run the same query with the groot user or make the lambda user part of the guardian group, I’m allowed to do math.

Therefore my question: why is only guardian educated enough to do math? Is this not a bit discriminating against other, maybe also pretty smart user groups?

MichelDiz · April 11, 2023, 8:20pm

Odd, I never heard about it.
Is this happening in lambda only?

Poolshark · April 11, 2023, 8:46pm

Although not tested, I assume this happens with any DQL request, regardless from where it has been sent since I basically do my own fetch from inside the lambda.

Topic		Replies	Views
DQL: Am I using vars correctly? Dgraph kind:question	2	440	October 20, 2020
Math() function does not work in the expected way in a specific scenario Dgraph example	13	1066	April 22, 2020
Compare values in 2 predicates Dgraph dql	4	594	February 2, 2022
Do strings get converted to Float for inequality when the schema type is Float? Dgraph	1	287	August 10, 2020
DQL: Order of filter execution vs pagination Dgraph kind:question	4	369	March 27, 2021

Discrimination of user goups when using math() in DQL

Related Topics