I'm running into an issue with the Retool permission system. I wonder if anyone can help?
Here are the details:
-
I have a role configured called: developer
-
I have a resource configured called: dynamic-statement-resource
-
I have an app called example_app
-
The developer role has 'Edit' permissions to example_app, but only 'Use' permission on dynamic-statement-resource
With this setup I was expecting the users assigned to this role to be able to go into edit mode on the app and reconfigure queries for any resource other than dynamic-statement-resource. However, on testing it seems that users are able to add and edit queries which are aimed at dynamic-statement-resource, despite them not having edit permission on that resource.
Can you help fix the issue?
I'd like the developer role to be able to edit the app, but not add or edit queries with the dynamic-statement-resource.
Many thanks in advance!