Simplify your stack and build anything. Or everything.

Content Management System

Create with a minimal, powerful editing experience. Extend effortlessly.

Enterprise App Builder

Build sophisticated enterprise tools while reducing development costs.

Headless E-commerce

Manage all your content, alongside your products, in a single, powerful editing experience.

Digital Asset Management

Ensure brand consistency by seamlessly managing digital assets within your CMS.

Build tomorrow’s web with a modern solution you truly own.

For Marketing Teams

Advanced features like Visual Editing and Live Preview are giving a head back to the headless CMS.

Learn how Payload delivers for software consultancies with a content framework that can build anything.

Built with React & TypeScript, depart restrictive “no-code” options and write code you’re proud of.

Code-based nature means you can build on top of it to power anything.

Resources

Documentation Examples Templates GitHub Blog

Community

Roadmap Discord Community Help

Payload Cloud

Deploy your entire stack in one place with Payload Cloud.

Login Cloud Pricing

It’s time to take back your content infrastructure.

Schedule a Demo

Enterprise Features

SSO Publishing Workflows Visual Editor Static A/B testing AI features

Customer Stories

Microsoft Blue Origin Hello Bello Mythical Society Tekton

Featured Customer Story

Microsoft chose Payload to tell the world about AI.

Read the case study

New project Login

New project Login

Payload Access Control Issue

haniel.ulast year

9

Here's a bare minimum reproduction repo:

https://github.com/HanielU/payload-access-control-issue

I've provided screenshots for both My config and errors I'm getting after logging in as a customer

I really have no Idea what I'm doing wrong here...

The logic is basically: Only customers who are in the

recipients

field of a Notification can view that notification

jarrod69420last year

Without testing this, I

think

this should work:

return {
  or: [
    {
      and: [
        {
          'recipient.value': {
            equals: user.id,
          },
        },
        {
          'recipient.collection': {
            equals: 'users',
          },
        },
      ]
    },
    {
      and: [
        {
          'recipient.value': {
            equals: user.id,
          },
        },
        {
          'recipient.collection': {
            equals: 'customers',
          },
        },
      ]
    }
  ]
}

haniel.ulast year
Still gives the same error
dribbens
last year
Hey @haniel.u try changing your access control to
```
return {
    or: [
      {
        'recipient.value': {
          equals: user.id
        }
      },
    ],
  };
```
Does that help? Keep the above returns for true/false like you did, but replace line 10 and beyond with this ^
haniel.ulast year
Alright let me try

This works, thank you so much 🥹
dribbens
last year
You're welcome!

Continue the discussion in Discord

Star

Chat on Discord

Discord

online

Can't find what you're looking for?

Get help straight from the Payload team with an Enterprise License.