support legacy one role per user

2026-03-27 13:06:37 +00:00 · 2026-03-26 18:19:10 -07:00
parent d046084e84
commit 13eadeaa8f
14 changed files with 360 additions and 65 deletions
--- a/server/routers/external.ts
+++ b/server/routers/external.ts
@@ -39,7 +39,6 @@ import {
    verifyApiKeyAccess,
    verifyDomainAccess,
    verifyUserHasAction,
-    verifyUserCanSetUserOrgRoles,
    verifyUserIsOrgOwner,
    verifySiteResourceAccess,
    verifyOlmAccess,
@@ -645,6 +644,7 @@ authenticated.delete(
    logActionAudit(ActionsEnum.deleteRole),
    role.deleteRole
 );
+
 authenticated.post(
    "/role/:roleId/add/:userId",
    verifyRoleAccess,
@@ -652,17 +652,7 @@ authenticated.post(
    verifyLimits,
    verifyUserHasAction(ActionsEnum.addUserRole),
    logActionAudit(ActionsEnum.addUserRole),
-    user.addUserRole
-);
-
-authenticated.delete(
-    "/role/:roleId/remove/:userId",
-    verifyRoleAccess,
-    verifyUserAccess,
-    verifyLimits,
-    verifyUserHasAction(ActionsEnum.removeUserRole),
-    logActionAudit(ActionsEnum.removeUserRole),
-    user.removeUserRole
+    user.addUserRoleLegacy
 );

 authenticated.post(
@@ -838,16 +828,6 @@ authenticated.post(
    user.updateOrgUser
 );

-authenticated.post(
-    "/org/:orgId/user/:userId/roles",
-    verifyOrgAccess,
-    verifyUserAccess,
-    verifyLimits,
-    verifyUserCanSetUserOrgRoles(),
-    logActionAudit(ActionsEnum.setUserOrgRoles),
-    user.setUserOrgRoles
-);
-
 authenticated.get("/org/:orgId/user/:userId", verifyOrgAccess, user.getOrgUser);
 authenticated.get("/org/:orgId/user/:userId/check", org.checkOrgUserAccess);