Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Field-level using Groups returns null on CREATE/UPDATE calls

See original GitHub issue

Before opening, please confirm:

I have searched for duplicate or closed issues and discussions.
I have read the guide for submitting bug reports.
I have done my best to include a minimal, self-contained set of instructions for consistently reproducing the issue.

JavaScript Framework

React

Amplify APIs

GraphQL API

Amplify Categories

auth, function, api

Environment information

# Put output below this line
  System:
    OS: macOS 12.0.1
    CPU: (8) x64 Apple M1
    Memory: 137.84 MB / 16.00 GB
    Shell: 5.8 - /bin/zsh
  Binaries:
    Node: 14.18.1 - /usr/local/bin/node
    Yarn: 1.22.10 - /usr/local/bin/yarn
    npm: 8.1.0 - /usr/local/bin/npm
  Browsers:
    Chrome: 96.0.4664.55
    Firefox Developer Edition: 95.0
    Safari: 15.1
  npmPackages:
    @aws-amplify/cli: ^7.3.1 => 7.3.1 
    @aws-amplify/ui-react: ^1.2.24 => 1.2.24 
    @babel/eslint-parser: ^7.15.8 => 7.16.3 
    @date-io/core: ^2.10.7 => 2.11.0 (1.3.13)
    @date-io/moment: 1.x => 1.3.13 
    @material-ui/core: ^4.12.3 => 4.12.3 
    @material-ui/icons: ^4.11.2 => 4.11.2 
    @material-ui/lab: ^4.0.0-alpha.57 => 4.0.0-alpha.60 
    @material-ui/pickers: ^3.3.10 => 3.3.10 
    @mui/x-data-grid: ^4.0.1 => 4.0.2 
    @reduxjs/toolkit: ^1.6.1 => 1.6.2 
    @reduxjs/toolkit-query:  1.0.0 
    @reduxjs/toolkit-query-react:  1.0.0 
    @testing-library/dom: ^7.29.4 => 7.31.2 
    @testing-library/jest-dom: ^5.11.9 => 5.15.0 
    @testing-library/react: ^11.2.5 => 11.2.7 
    @testing-library/user-event: ^12.7.1 => 12.8.3 
    @typescript-eslint/eslint-plugin: ^4.0.0 => 4.33.0 
    @typescript-eslint/parser: ^4.0.0 => 4.33.0 
    aws-amplify: ^4.3.6 => 4.3.6 
    babel-eslint: ^10.0.0 => 10.1.0 
    blob-stream: ^0.1.3 => 0.1.3 
    chart.js: ^2.9.4 => 2.9.4 
    core-js: ^3.8.3 => 3.19.1 (2.6.12)
    deep-equal: ^2.0.5 => 2.0.5 (1.1.1)
    eslint: ^7.5.0 => 7.32.0 
    eslint-config-react-app: ^6.0.0 => 6.0.0 
    eslint-config-standard: ^16.0.3 => 16.0.3 
    eslint-plugin-flowtype: ^5.2.0 => 5.10.0 
    eslint-plugin-import: ^2.22.0 => 2.25.3 
    eslint-plugin-jsx-a11y: ^6.3.1 => 6.5.1 
    eslint-plugin-node: ^11.1.0 => 11.1.0 
    eslint-plugin-promise: ^5.1.0 => 5.1.1 
    eslint-plugin-react: ^7.20.3 => 7.27.0 
    eslint-plugin-react-hooks: ^4.0.8 => 4.3.0 
    example:  1.0.0 
    fetch-mock: ^9.3.1 => 9.11.0 
    file-saver: ^2.0.5 => 2.0.5 
    formik: ^2.2.6 => 2.2.9 
    jsonexport: ^3.2.0 => 3.2.0 
    material-ui-phone-number: ^2.2.6 => 2.2.6 
    moment: ^2.29.1 => 2.29.1 
    new-plugin-package:  1.0.0 
    node-fetch: ^2.6.1 => 2.6.6 (2.1.2, 1.7.3)
    pdfkit-browserify: ^0.8.3-R2 => 0.8.3-R2 
    prettier: ^1.19.1 => 1.19.1 
    prop-types: ^15.7.2 => 15.7.2 
    react: ^17.0.1 => 17.0.2 (16.14.0)
    react-app-polyfill: ^2.0.0 => 2.0.0 
    react-chartjs-2: ^2.11.1 => 2.11.2 
    react-cookie: ^4.0.3 => 4.1.1 
    react-credit-cards: ^0.8.3 => 0.8.3 
    react-dnd: ^11.1.3 => 11.1.3 
    react-dnd-html5-backend: ^11.1.3 => 11.1.3 
    react-dom: ^16.13.1 => 16.14.0 
    react-draggable: ^4.4.3 => 4.4.4 
    react-fullstory: ^1.4.0 => 1.4.0 
    react-ga: ^3.1.2 => 3.3.0 
    react-material-ui-carousel: ^2.3.5 => 2.3.8 
    react-recaptcha: ^2.3.10 => 2.3.10 
    react-redux: ^7.2.0 => 7.2.6 
    react-router-dom: ^5.1.2 => 5.3.0 
    react-scripts: ^4.0.2 => 4.0.3 
    react-sliding-pane: ^7.0.0 => 7.1.0 
    react-square-payment-form: ^0.7.2 => 0.7.2 
    react-stack-grid: ^0.7.1 => 0.7.1 
    redux: ^4.0.5 => 4.1.2 
    redux-devtools: ^3.5.0 => 3.7.0 
    redux-devtools-extension: ^2.13.8 => 2.13.9 
    redux-immutable-state-invariant: ^2.1.0 => 2.1.0 
    redux-mock-store: ^1.5.4 => 1.5.4 
    redux-thunk: ^2.3.0 => 2.4.0 
    reselect: ^4.0.0 => 4.1.2 
    uuid: ^8.3.2 => 8.3.2 (3.4.0, 3.3.2)
    yup: ^0.29.3 => 0.29.3 
    zxcvbn: ^4.4.2 => 4.4.2 
  npmGlobalPackages:
    @aws-amplify/cli: 7.3.1
    eslint: 8.0.1
    gulp-cli: 2.3.0
    n: 7.5.0
    npm: 8.1.0
    stable: 0.1.8
    yarn: 1.22.10

Describe the bug

We have fields on a model that are protected by a field-level auth declaration. The declaration checks whether the user is in a group that has permissions to get the field value.

In the results of a GET request, these declarations are respected. In the results of both CREATE and UPDATE requests though, all users receive null for these fields, regardless of their group.

Expected behavior

I would expect that the results of CREATE and UPDATE would contain the same fields as a GET request.

This may be a misunderstanding on my part, would love some further info if so

Reproduction steps

Create a new type in a graphqlAPI with the @model attribute.
Add a top-level auth declaration that checks for a custom:tenant value stored in Cognito (not sure if this is relevant to the issue).
Add a field-level auth declaration that checks for a user’s group in order to return the field value.

Code Snippet

type Resource
  @model
  @auth (
    rules: [
      { allow: owner, ownerField: "tenantId", identityClaim: "custom:tenant" }
    ]
  )
{
  id: ID!
  tenantId: ID
  actualHourlyRate: Float @auth(rules: [{ allow: groups, groups: ["AllowedFinancials"] }])
}

Log output

// Put your logs below this line

aws-exports.js

No response

Manual configuration

No response

Additional configuration

No response

Mobile Device

No response

Mobile Operating System

No response

Mobile Browser

No response

Mobile Browser Version

No response

Additional information and screenshots

No response

Issue Analytics

State:
Created 2 years ago
Comments:5 (2 by maintainers)

Top GitHub Comments

1reaction

jo2commented, Nov 26, 2021

I’m facing the same error in my application using vue. But this error can also be replicated using AWS AppSync, so it might not be a problem with this project.

0reactions

alharris-atcommented, May 17, 2022

It looks like this issue is related to aws-amplify/amplify-category-api#64