I have been searching for an error where a user should get an object but does not get it. I can see that the entity and the objects are existing but the user simply does not get it (stays empty).
After a while I checked the access rights and saw that the user role is not allowed to get it. So far so good access rights work BUT
Can we somehow create a log (warning) if a RETRIEVE does not get any object due to access rights?
This would save time searching for the reason! It is of coarse experience BUT you always need to go through your debugging experience list in your head hoping not to forget sth. in this moment.
Hi,
I asked the team responsible and they had this to say:
This may cause a lot of warnings, as many objects may not be returned due to access rules. E.g., imagine a retrieve in an entity with 1000 objects, but the user can only see 10, should we report all 990? Also it's usually best practice not to disclose too much security related info, so bad actors aren't informed about existing but not available data. Some customers also find this to be sensitive information that should not go into log files.