Apply_when with more than one statement not working

Daniel_Bebber1 · September 1, 2022, 6:14am

Hello,

We are currently working on a project with multiple user types and want to apply rules to our collections to ensure correct access.
While writing the rules we encountered an issue. Rules that contain more than one statement in the apply_when are just not working and just throwing exceptions in backend:

error executing match expression: invalid document: must either be a boolean expression or a literal document

The rule is:

"apply_when": {
        "company": "%%user.custom_data.company",
        "%%user.custom_data.type": "supplier"
      }

(With “company” being a field in the document and “supplier” beeing a possible value of the type in the custom data)

Both statements of the apply_when are working solo in other places. But when together - they result into the exception.
Are we missing something? Because in the documentation this is presented as the way to go for multiple statements.

Best Regards,
Daniel

Parsa_Foroozmand · September 16, 2022, 7:54am

hi
I had a problem like this , i just found the solution
I think the problem is with “company” field.try this:
1-convert rules to advanced rule
2-leave apply_when field empty
3-for read ,write, search,insert field copy and paste your original condition
4-for delete field use this line of code:

"delete":{
        "%%prevRoot.company": "%%user.custom_data.company",
        "%%user.custom_data.type": "supplier"
      }

Parsa_Foroozmand · September 16, 2022, 8:10am

if that didn’t work,do all previous things and for write field use this code:

"write":{
"%or": [
       { "%%prevRoot.company": "%%user.custom_data.company"},
       { "%%root.company": "%%user.custom_data.company"}
]
,
        "%%user.custom_data.type": "supplier"
      }

Daniel_Bebber1 · November 11, 2022, 6:21am

This might be workarounds, but I don’t get why the way how it is descripted in the official documentation is not working at all…

Klaas · June 20, 2024, 6:26pm

I broke my head about this too. But I found a way to do this, indeed the documentation lacks information on this.

A bit of a late reply, but hopefully others will get something out of it.

Add a %and around your 2 requirements.
In this example, a role is assigned if one of the user’s groups appears in the “access.owner” array + if it has a “pro” license.

"apply_when": {
    "%and": [
        {
            "access.owners": {
                "$in": "%%user.custom_data.accessIDs"
            }
        },
        {
            "%%user.custom_data.licenses": {
                "$in": [
                    "pro"
                ]
            }
        }
    ]
}