From cc4b6bb2faabc11309c7762372fad5b48892c48e Mon Sep 17 00:00:00 2001 From: Shane Melton Date: Thu, 8 Jun 2023 09:02:01 -0700 Subject: [PATCH] [AC-1163] Manage users permissions should allow collection assignment (#2808) * [AC-1163] Update ViewAllCollections method to include check for ManagerUsers permission Users with ManagerUsers permission need to be able to view all collections in order to assign them to other users. * [AC-1163] Revert change to CurrentContext * [AC-1163] Add check for ManageUsers to list collections endpoint --- src/Api/Controllers/CollectionsController.cs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Api/Controllers/CollectionsController.cs b/src/Api/Controllers/CollectionsController.cs index 6f06c643a2..4fc2ffc201 100644 --- a/src/Api/Controllers/CollectionsController.cs +++ b/src/Api/Controllers/CollectionsController.cs @@ -87,7 +87,7 @@ public class CollectionsController : Controller // We always need to know which collections the current user is assigned to var assignedOrgCollections = await _collectionRepository.GetManyByUserIdWithAccessAsync(_currentContext.UserId.Value, orgId); - if (await _currentContext.ViewAllCollections(orgId)) + if (await _currentContext.ViewAllCollections(orgId) || await _currentContext.ManageUsers(orgId)) { // The user can view all collections, but they may not always be assigned to all of them var allOrgCollections = await _collectionRepository.GetManyByOrganizationIdWithAccessAsync(orgId);