Search endpoint requires admin user through API

Description

When making an api call to the search endpoint, I need an admin user permissions or else I get "Access Denied" returned.

Meanwhile, the endpoint says ".permissions(:view_all_records)" should work with search.

It feels like this isn't working as intended and there should be a way to provide permissions without making an API user an admin.

This fails: http:/localhost:8089/search?page=1&type[]=accession&sort=identifier desc&aq={"query": {"field": "four_part_id", "value": 2019, "jsonmodel_type": "field_query"}} when you put it through with all permissions, and only works when the user is an admin.

Environment

None

Status

Assignee

Unassigned

Reporter

Patrick Galligan

Labels

Affects versions

2.6.0

Priority

Major