authsome issueshttps://gitlab.coko.foundation/pubsweet/authsome/-/issues2018-05-28T06:38:20Zhttps://gitlab.coko.foundation/pubsweet/authsome/-/issues/3Add License2018-05-28T06:38:20ZAdam Hydeadam@coko.foundationAdd LicenseMIT (c) Adam HydeMIT (c) Adam Hydehttps://gitlab.coko.foundation/pubsweet/authsome/-/issues/1Provided modes are broken under Firefox < 512017-10-01T15:55:02ZTanner DoshierProvided modes are broken under Firefox < 51The `for...of` construct with the `const` keyword throws a `SyntaxError: missing = in const declaration` in Firefox up to version 51 ([upstream bug](https://bugzilla.mozilla.org/show_bug.cgi?id=1101653)). This breaks the entire PubSweet ...The `for...of` construct with the `const` keyword throws a `SyntaxError: missing = in const declaration` in Firefox up to version 51 ([upstream bug](https://bugzilla.mozilla.org/show_bug.cgi?id=1101653)). This breaks the entire PubSweet app in Firefox. We can work around it by providing our own mode, so this is more of just an FYI.
Note, Firefox 51 is currently set to release at the [end of January 2017](https://wiki.mozilla.org/RapidRelease/Calendar).https://gitlab.coko.foundation/pubsweet/authsome/-/issues/2Cannot get specific about update permissions2017-10-01T15:55:02ZYannis BarlasCannot get specific about update permissionsI think that one of the main things missing here is the ability to get fine grained control about updates.
I need to let some users update a pubsweet fragment, but I only want to let them update one field of the fragment, and only if t...I think that one of the main things missing here is the ability to get fine grained control about updates.
I need to let some users update a pubsweet fragment, but I only want to let them update one field of the fragment, and only if the value of that field was something specific before.
Right now, I can only tell authsome that the user has update permissions on that fragment.
In essence, yes the user can update, but update what?
What would be needed there would probably be the previous state of the fragment, so that the comparison could be performed in my authsome module.
I can do the checks in the frontend of course, but that is never a good idea when it comes to permissions.JureJure