fix: use raw tenant attribute to avoid type mismatch in update comparison

abnegate · claude · abnegate · commit 9aa420600a6b · 2026-03-16T22:34:52.000+13:00
getTenant() casts numeric strings to int, but the no-change comparison
uses strict equality. This caused false shouldUpdate=true, triggering
authorization checks on documents with only read permissions.

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/src/Database/Database.php b/src/Database/Database.php
@@ -6055,7 +6055,7 @@ public function updateDocument(string $collection, string $id, Document $documen
             $document['$createdAt'] = ($createdAt === null || !$this->preserveDates) ? $old->getCreatedAt() : $createdAt;
 
             if ($this->adapter->getSharedTables()) {
-                $document['$tenant'] = $old->getTenant(); // Make sure user doesn't switch tenant
+                $document['$tenant'] = $old->getAttribute('$tenant'); // Make sure user doesn't switch tenant
             }
             $document = new Document($document);
 

Original file line number	Diff line number	Diff line change
`@@ -6055,7 +6055,7 @@ public function updateDocument(string $collection, string $id, Document $documen`
`6055`	`6055`	`$document['$createdAt'] = ($createdAt === null \|\| !$this->preserveDates) ? $old->getCreatedAt() : $createdAt;`
`6056`	`6056`
`6057`	`6057`	`if ($this->adapter->getSharedTables()) {`
`6058`		`- $document['$tenant'] = $old->getTenant(); // Make sure user doesn't switch tenant`
	`6058`	`+ $document['$tenant'] = $old->getAttribute('$tenant'); // Make sure user doesn't switch tenant`
`6059`	`6059`	`}`
`6060`	`6060`	`$document = new Document($document);`
`6061`	`6061`