From 7c7fd29d9826bbd29108f0abb0a5d1dafc421c28 Mon Sep 17 00:00:00 2001
From: Matthias Neugebauer <mtneug@shio.solutions>
Date: Tue, 12 May 2026 22:16:18 +0200
Subject: [PATCH] Allow only custom actions in ACL

Currently, the ACL check fails if only custom actions are configured.
This adds a condition that allows that.
---
 src/slices/aclSlice.ts | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/src/slices/aclSlice.ts b/src/slices/aclSlice.ts
index f081bd865e..01f6e13052 100644
--- a/src/slices/aclSlice.ts
+++ b/src/slices/aclSlice.ts
@@ -261,8 +261,11 @@ export const checkAcls = (acls: TransformedAcl[]) => (dispatch: AppDispatch, get
 			bothRights = true;
 		}
 
-		// check if each policy has read or write right (at least one checkbox should be checked)
-		if (!acls[i].read && !acls[i].write) {
+		// check if each policy has either
+		//   - read rights
+		//   - write rights
+		//   - custom action rights
+		if (!acls[i].read && !acls[i].write && acls[i].actions.length === 0) {
 			check = false;
 		}
 	}