Simplify your stack and build anything. Or everything.

Content Management System

Create with a minimal, powerful editing experience. Extend effortlessly.

Enterprise App Builder

Build sophisticated enterprise tools while reducing development costs.

Headless E-commerce

Manage all your content, alongside your products, in a single, powerful editing experience.

Digital Asset Management

Ensure brand consistency by seamlessly managing digital assets within your CMS.

Build tomorrow’s web with a modern solution you truly own.

For Marketing Teams

Advanced features like Visual Editing and Live Preview are giving a head back to the headless CMS.

Learn how Payload delivers for software consultancies with a content framework that can build anything.

Built with React & TypeScript, depart restrictive “no-code” options and write code you’re proud of.

Code-based nature means you can build on top of it to power anything.

Resources

Documentation Examples Templates GitHub Blog

Community

Roadmap Discord Community Help

Payload Cloud

Deploy your entire stack in one place with Payload Cloud.

Login Cloud Pricing

It’s time to take back your content infrastructure.

Schedule a Demo

Enterprise Features

SSO Publishing Workflows Visual Editor Static A/B testing AI features

Customer Stories

Microsoft Blue Origin Hello Bello Mythical Society Tekton

Featured Customer Story

Microsoft chose Payload to tell the world about AI.

Read the case study

New project Login

New project Login

Access control: add limit restriction

Sandro Wegmannlast year

5

This might be a dumb question, but how do I add a limit to a query in access control?

I want to restrict read requests to the latest doc in the collection: If someone calls the GET /api/[collection] endpoint, it should only return the latest doc

I've tried modifying the req object, but without success.

noheadphoneslast year
I think it's not a good idea to limit this (and the way you'd go about it is convoluted) in the access control, as the access control will affect local and other operations in payload

I would limit read to only the users you want and then create your own API endpoint

There you have full control over what parameters are available and what gets returned

https://payloadcms.com/docs/rest-api/overview#custom-endpoints
Jarrodlast year
You could do this, but you would have to set a field on the doc i.e. a checkbox and then when a new doc gets created use a hook to find all the docs where it’s checked, update them to unchecked and check the newest one

Continue the discussion in Discord

Star

Chat on Discord

Discord

online

Can't find what you're looking for?

Get help straight from the Payload team with an Enterprise License.