ti.sil/sourcebot
1
0
Fork 0
mirror of https://github.com/sourcebot-dev/sourcebot.git synced 2025-12-12 20:35:24 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

fix permissions on audit endpoint

Browse source
This commit is contained in:
bkellam 2025-11-27 09:56:45 -08:00
parent 3863f6dd81
commit da3c93e05a
1 changed files with 35 additions and 33 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
packages/web/src/ee/features/audit/actions.ts
View file

@ -5,10 +5,11 @@ import { getAuditService } from "@/ee/features/audit/factory";
import { ErrorCode } from "@/lib/errorCodes";
import { ServiceError } from "@/lib/serviceError";
import { prisma } from "@/prisma";
import { withAuthV2 } from "@/withAuthV2";
import { withAuthV2, withMinimumOrgRole } from "@/withAuthV2";
import { createLogger } from "@sourcebot/shared";
import { StatusCodes } from "http-status-codes";
import { AuditEvent } from "./types";
import { OrgRole } from "@sourcebot/db";
const auditService = getAuditService();
const logger = createLogger('audit-utils');
@ -25,7 +26,8 @@ export const createAuditAction = async (event: Omit<AuditEvent, 'sourcebotVersio
);
export const fetchAuditRecords = async () => sew(() =>
withAuthV2(async ({ user, org }) => {
withAuthV2(async ({ user, org, role }) =>
withMinimumOrgRole(role, OrgRole.OWNER, async () => {
try {
const auditRecords = await prisma.audit.findMany({
where: {
@ -58,5 +60,5 @@ export const fetchAuditRecords = async () => sew(() =>
message: "Failed to fetch audit logs",
} satisfies ServiceError;
}
})
}))
);