@auth rule with (inner) OR condition fails if an empty list is given as variable

dtrckd · December 7, 2021, 11:07am

Yes, I had tested those possibilities before, and requiring the array doesn’t seem to change the situation.

Still an error when the list exists but is empty.
this time (with [String]!) the error is different when the list is nil (“cannot be null”, or “must be defined’”), that’s ok.
still fail silently with @auth and the an empty list, which is problematic in the case of a OR like my exemple. Yet I agree that making the OR outside the filter will be a workaround like you proposed. That is why I added the term (inner) in the issue title ;).

Topic		Replies	Views
The `@auth` directive - Graphql Documentation	13	2543	December 12, 2020
Auth rules seem to fail when using multiple queries in and / or construct GraphQL auth , dgraph , kind:bug	1	534	November 10, 2021
Feature request: @auth rule should not evaluate to false if one JWT var is missing, only if all JWT vars missing GraphQL	1	337	July 30, 2021
Scope of Auth Directive Query Rules GraphQL auth	16	1757	August 21, 2020
Query auth-rules mask graphql error propagation GraphQL kind:bug	4	858	April 6, 2021