From 01e0c30596cc50da6cde0886aef85635465c90f0 Mon Sep 17 00:00:00 2001 From: ispik Date: Sun, 12 Apr 2026 14:12:15 +0300 Subject: [PATCH] fix: update permissions for accounts routes to ManageAccounts --- crates/core/models/src/v0/admin.rs | 6 +++--- .../delta/src/routes/admin/accounts/account_disable.rs | 10 +++++----- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/crates/core/models/src/v0/admin.rs b/crates/core/models/src/v0/admin.rs index 12648206..5b033ecd 100644 --- a/crates/core/models/src/v0/admin.rs +++ b/crates/core/models/src/v0/admin.rs @@ -289,7 +289,7 @@ auto_derived! { ManageNotes = 15, Discover = 16, - AccountDisable = 17, + ManageAccounts = 17, } pub enum AdminAuditItemActions { @@ -322,7 +322,7 @@ auto_derived! { ServerUnbanMember, // Accounts - AccountDisable + ManageAccounts } // Joiner payloads @@ -370,7 +370,7 @@ impl AdminAuditItemActions { AdminAuditItemActions::ServerBanMember => true, AdminAuditItemActions::ServerUnbanMember => true, AdminAuditItemActions::ServerFetchMembers => false, - AdminAuditItemActions::AccountDisable => true, + AdminAuditItemActions::ManageAccounts => true, } } } diff --git a/crates/delta/src/routes/admin/accounts/account_disable.rs b/crates/delta/src/routes/admin/accounts/account_disable.rs index 8da12310..e939b156 100644 --- a/crates/delta/src/routes/admin/accounts/account_disable.rs +++ b/crates/delta/src/routes/admin/accounts/account_disable.rs @@ -9,7 +9,7 @@ use rocket::serde::json::Json; use rocket::State; use rocket_empty::EmptyResponse; -/// Disable an account. Requires AccountDisable permissions +/// Disable an account. Requires ManageAccounts permissions #[openapi(tag = "Admin")] #[post("/accounts/disable/?")] pub async fn admin_account_disable( @@ -19,9 +19,9 @@ pub async fn admin_account_disable( case: Option<&str>, ) -> Result { let user = flatten_authorized_user(&auth); - if !user_has_permission(user, v0::AdminUserPermissionFlags::AccountDisable) { + if !user_has_permission(user, v0::AdminUserPermissionFlags::ManageAccounts) { return Err(create_error!(MissingPermission { - permission: "AccountDisable".to_string() + permission: "ManageAccounts".to_string() })); } @@ -34,7 +34,7 @@ pub async fn admin_account_disable( let admin = db.admin_user_fetch(&target.id).await.ok(); if let Some(admin) = admin { - if user_has_permission(&admin, v0::AdminUserPermissionFlags::AccountDisable) { + if user_has_permission(&admin, v0::AdminUserPermissionFlags::ManageAccounts) { return Err(create_error!(PrivilegedAccount)); } } @@ -42,7 +42,7 @@ pub async fn admin_account_disable( create_audit_action( db, &user.id, - v0::AdminAuditItemActions::AccountDisable, + v0::AdminAuditItemActions::ManageAccounts, case, Some(id.id), None,