- operation: “*”
I can now query all Users publicly, this is expected.
- operation: User.create
I cannot create Users unless authenticated (expected behavior), but can no longer query Users publicly – why is this?
Still learning the framework, but I expected the permissions configuration to apply only to the specific action in “operation”.