Search endpoint requires admin user through API

Description

When making an api call to the search endpoint, I need an admin user permissions or else I get "Access Denied" returned.

Meanwhile, the endpoint says ".permissions(:view_all_records)" should work with search.

It feels like this isn't working as intended and there should be a way to provide permissions without making an API user an admin.

This fails: http:/localhost:8089/search?page=1&type[]=accession&sort=identifier desc&aq={"query": {"field": "four_part_id", "value": 2019, "jsonmodel_type": "field_query"}} when you put it through with all permissions, and only works when the user is an admin.

Environment

None

Assignee

Unassigned

Reporter

Patrick Galligan

Labels

Affects versions

Priority

Major
Configure