helix-admin/helix-engage-server
1
0
Fork 0
mirror of https://dev.azure.com/globalhealthx/EMR/_git/helix-engage-server synced 2026-05-18 20:08:19 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: map HelixEngage Supervisor platform role to admin app role

Browse Source 
Supervisor users were getting 'executive' role because only 'HelixEngage
Manager' was mapped to admin. This broke admin route access after the
RequireAdmin guard was added.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
saridsa2
2026-04-13 06:47:01 +05:30
parent d97d73dd1a
commit 01348123e6
1 changed files with 1 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/auth/auth.controller.ts
View File

@@ -107,11 +107,9 @@ export class AuthController {
// Determine app role from platform roles // Determine app role from platform roles
let appRole = 'executive'; // default let appRole = 'executive'; // default
if (roleLabels.includes('HelixEngage Manager')) { if (roleLabels.includes('HelixEngage Manager') || roleLabels.includes('HelixEngage Supervisor')) {
appRole = 'admin'; appRole = 'admin';
} else if (roleLabels.includes('HelixEngage User')) { } else if (roleLabels.includes('HelixEngage User')) {
// Distinguish CC agent from executive by email convention or config
// For now, emails containing 'cc' map to cc-agent
const email = workspaceMember?.userEmail ?? body.email; const email = workspaceMember?.userEmail ?? body.email;
appRole = email.includes('cc') ? 'cc-agent' : 'executive'; appRole = email.includes('cc') ? 'cc-agent' : 'executive';
} }