mirror of
https://github.com/quay/quay.git
synced 2026-01-27 18:42:52 +03:00
4ddab2b6be
* fix(ui): Enable organization/user visibility for read-only superusers (PROJQUAY-6882) Users listed under GLOBAL_READONLY_SUPER_USERS can now see all organizations and users in the UI, matching regular superuser visibility with read-only restrictions on actions. - Update UseCurrentUser to include global_readonly_super_user in isSuperUser check - Add Cypress tests for read-only superuser visibility and action restrictions - Settings column actions correctly hidden via existing canModify permission Co-authored-by: Claude <noreply@anthropic.com> * fix(ui): Add global_readonly_super_user field to API responses (PROJQUAY-6882) - Add global_readonly_super_user field to user API response in endpoints/api/user.py - Allow read-only superusers to view organization teams in endpoints/api/organization.py - Allow read-only superusers to view robot permissions in endpoints/api/robot.py * fix(ui): Prevent read-only superusers from deleting orgs/users Security fix: Read-only superusers should not be able to delete orgs or users they don't own, even though they can view them. * Fix inline import + incorrect assert + add codecov tests --------- Co-authored-by: harishsurf <hgovinda@redhat.com> Co-authored-by: Claude <noreply@anthropic.com>