Skip to content
Get more help on our Slack

I’ve been trying to create a new permissions document. I tried using sanity exec But I get the error: ClientError: The mutation(s) failed: mutation failed on document

15 replies
Last updated: Sep 9, 2020
Hi! I’ve been trying to create a new permissions document. I tried using 
sanity exec
But I get the error: 
ClientError: The mutation(s) failed: mutation failed on document "_.groups.corePagesEditors": Insufficient permissions; permission "manage" required
What is the correct way of creating permissions documents?
Sep 9, 2020, 8:13 PM
BTW, my script looks something like:
const sanityClient = require('@sanity/client');

const client = sanityClient({
  projectId: 'projectId',
  dataset: 'myDataset',
  token:
    'someToken',
});

const doc = {
  _id: '_.groups.corePagesEditors',
  _type: 'system.group',
  grants: [
    {
      filter: "_type == 'corePage'",
      permissions: ['editHistory'],
    },
  ],
  members: ['someId'],
};

client.create(doc).then((res) => {
  // eslint-disable-next-line no-console
  console.log(`Document was created, document ID is ${res._id}`);
});
Sep 9, 2020, 8:14 PM
Does your token have the right permissions?
Sep 9, 2020, 8:19 PM
ah! no, I don’t even see those radio buttons. I only see read, write and deploy
Sep 9, 2020, 8:20 PM
What do I need to do to see those radio buttons?
Sep 9, 2020, 8:20 PM
Are you on the enterprise plan?
Sep 9, 2020, 8:21 PM
I’m on an advanced plan
Sep 9, 2020, 8:22 PM
Oh! I see, this is an enterprise plan feature!
Sep 9, 2020, 8:23 PM
I didn’t realize that 😕
Sep 9, 2020, 8:23 PM
Yes, only available on enterprise as far I know
Sep 9, 2020, 8:23 PM
Hm.. any ideas how we can make that more clear? It's quite unfortunate that it's not communicated clearly enough.
Sep 9, 2020, 8:29 PM
I’m using this documentation:
https://www.sanity.io/docs/access-control
It mentions that the 
Create Sessions
group is available for the enterprise. But it seems like in order to create custom access control groups, an enterprise plan is required. Is that correct?
If that is the case, just a warning on that page would have been enough.
Sep 9, 2020, 8:38 PM
I mean, if you read those docs, you kinda get the idea that the feature is globally available. So a warning message would be useful.
Sep 9, 2020, 8:40 PM
Thanks for the feedback! In this doc it's more clearly labelled https://www.sanity.io/docs/third-party-login
But I see it's missing from the access control doc. I'll issue a fix.
Sep 9, 2020, 8:43 PM
Thanks for the feedback! In this doc it's more clearly labelled https://www.sanity.io/docs/third-party-login
But I see it's missing from the access control doc. I'll issue a fix.
Sep 9, 2020, 8:43 PM
Added this now, hope that helps others, at least. Sorry for the inconvenience
Sep 9, 2020, 9:12 PM

Sanity.io – build remarkable experiences at scale

Sanity is a customizable solution that treats content as data to power your digital business. Free to get started, and pay-as-you-go on all plans.

Get StartedJoin our Slack

Categorized in