In the PDF generator document, it mentions that the collection needs to have the view permissions set to anyone. I am wondering why this is the case.
I would like to have the view permissions set to "Item Creator" and the documentation says to query the collection from the backend but I have not been able to make this work. Is there a way to query the data on the backend and then filter the template page dataset? What's the best way to go about querying the collection to allow for item creator permissions?
Thanks
Hello,
You can disregard my last reply, I got the backend function to work and suppressAuth is also working just fine.
The only other question I have is if there is a way to prevent the pdf from downloading to the client side. I am going to be saving the pdf to the database but the user filling out the form does not need the pdf so just wondering how to prevent downloading the pdf.
Thanks,
Hi, Thanks for using the PDF Generator App! The principle behind this is that the server that reads your template page and converts it into a PDF does so as a anonymous site visitor. Meaning, it can only access pages and data that is accessible to anyone. The most secure way I can think of to handle data that requires higher permissions is to pass a secret key in the template url as a query param. Then use a backend function to to access the data (using suppressAuth) only on the condition that the secret key is present/correct. Please note that any PDF that is generated may be temporarily visible to people with access to the app server. (We don't store any data).
We can offer enterprise solutions (a dedicated server) for anyone with unique privacy needs.
Best, Eitan