allow editing self and owner user roles

2026-05-18 23:05:21 +00:00 · 2026-05-08 17:48:26 -07:00
parent 88d8414eb8
commit 9fb677e952
10 changed files with 153 additions and 80 deletions
--- a/server/routers/user/addUserRoleLegacy.ts
+++ b/server/routers/user/addUserRoleLegacy.ts
@@ -88,11 +88,11 @@ export async function addUserRoleLegacy(
            );
        }

-        if (existingUser.isOwner) {
+        if (existingUser.isOwner && role.isAdmin !== true) {
            return next(
                createHttpError(
                    HttpCode.FORBIDDEN,
-                    "Cannot change the role of the owner of the organization"
+                    "The organization owner must retain an administrator role"
                )
            );
        }