How to stop an auth user from deleting records they shouldn't have access to?
Options
Xano Support Chat
Administrator
ADMIN
Even after enabling authentication on my table and API endpoint, I was still able to delete a a record that didn't belong to my user id. Authentication already works for the create and update endpoints so am I missing something when configuring the delete endpoint?
Tagged:
Best Answer
-
Hi! Here's a video that takes you through the steps so the user can only access/delete the data they are authenticated for.
Categories
- All Categories
- 53 ? Announcements
- 47 ? Releases
- 37 ? Welcome
- 983 ? Help! I'm a Noob
- 125 ? No-Code Front-Ends
- 633 ? Working with APIs
- 439 ? Transforming data
- 126 ? Connect Xano to ...
- 50 ?? Find an Expert
- 348 ❓Other questions
- 35 ? Security
- 22 ✂️ Snippets
- 19 ? Showcase
- 7 ?️ Xano Chatter
- 62 ? Video Tutorials
- 171 ? Request a feature
- 229 ? Report a Bug
- 19 ? Templates & Extensions
- 7 ? Feedback