Gave it examples on what to avoid regarding update() and findUnique().

2024-12-28 11:34:41 +03:00 · 2023-07-10 15:48:02 +02:00 · 2023-07-10 15:48:02 +02:00 · 4f8a448dc9
commit 4f8a448dc9
parent 634995792c
1 changed files with 17 additions and 1 deletions
--- a/waspc/src/Wasp/AI/GenerateNewProject/Operation.hs
+++ b/waspc/src/Wasp/AI/GenerateNewProject/Operation.hs
@ -109,8 +109,24 @@ generateOperation operationType newProjectDetails entityPlans operationPlan = do
           Also, make sure to use full import statement for `fn:`: `import { getTasks } from "@server/actions.js"`,
           don't provide just the file path.
         - In NodeJS implementation, you will typically want to check if user is authenticated, by doing `if (!context.user) { throw new HttpError(401) }` at the start of the operation.
-         - Don't specify more than one field in the `where` clause of `update()` and `findUnique()` Prisma methods.
+         - DO NOT specify more than one field in the `where` clause of `update()` and `findUnique()` Prisma methods.
           Unlike other Prisma methods, these two can accept only one, unique field in their `where` clause.
+           WRONG:
+             ```js
+              const task = await context.entities.Task.findUnique({
+                where: {
+                  id: args.id,
+                  userId: context.user.id
+                }
+              });
+             ```
+           CORRECT:
+             ```js
+              const task = await context.entities.Task.findUnique({
+                where: { id: args.id }
+              });
+              if (task.userId !== context.user.id) { throw new HttpError(403) };
+             ```

        ${appDescriptionStartMarkerLine}