Add lock NullValueBehavior ALLOW_WRITE_ONLY... fixes a case where audit couldn't be inserted

2025-07-18 13:10:44 +00:00 · 2023-03-29 18:11:02 -05:00
parent b0d0c0ce6c
commit 037d67dd38
2 changed files with 5 additions and 1 deletions
--- a/qqq-backend-core/src/main/java/com/kingsrook/qqq/backend/core/actions/tables/InsertAction.java
+++ b/qqq-backend-core/src/main/java/com/kingsrook/qqq/backend/core/actions/tables/InsertAction.java
@ -325,6 +325,8 @@ public class InsertAction extends AbstractQActionFunction<InsertInput, InsertOut
                  else
                  {
                     for(QRecord inputRecord : inputRecords)
+                     {
+                        if(RecordSecurityLock.NullValueBehavior.DENY.equals(recordSecurityLock.getNullValueBehavior()))
                        {
                           inputRecord.addError("You do not have permission to insert this record - the referenced " + leftMostJoinTable.getLabel() + " was not found.");
                        }
@ -334,6 +336,7 @@ public class InsertAction extends AbstractQActionFunction<InsertInput, InsertOut
            }
         }
      }
+   }



--- a/qqq-backend-core/src/main/java/com/kingsrook/qqq/backend/core/model/metadata/security/RecordSecurityLock.java
+++ b/qqq-backend-core/src/main/java/com/kingsrook/qqq/backend/core/model/metadata/security/RecordSecurityLock.java
@ -60,6 +60,7 @@ public class RecordSecurityLock
   public enum NullValueBehavior
   {
      ALLOW,
+      ALLOW_WRITE_ONLY, // not common - but see Audit, where you can do a thing that inserts them into a generic table, even though you can't later read them yourself...
      DENY
   }