itelofilho
Is it possible to perform attribute-based authorization after the .query?
I have a TRPC method,
getStudentGradeById,
that accepts the gradeId
. I want to return the grade only if the student owns it.
the current code is:
I want something like:
I don't want to use the output because it would require me to write the output schema for each method. Additionally, I don't want to include any permission management within the .query. Is it possible to achieve this? Should I attempt to make the necessary changes and submit a pull request?6 replies