fix(auth): distinguish empty model allowlists (#2938)

Co-authored-by: ghreprimand <203024559+ghreprimand@users.noreply.github.com>
2026-06-15 17:25:26 -04:00 · 2026-06-05 13:27:10 -05:00
parent fa9f62b44c
commit 545e692565
4 changed files with 85 additions and 15 deletions
@@ -30,10 +30,12 @@ DEFAULT_PRIVILEGES = {
    "can_manage_memory": True,
    "max_messages_per_day": 0,
    "allowed_models": [],
+    "allowed_models_restricted": False,
 }

 # Admins get everything
 ADMIN_PRIVILEGES = {k: (True if isinstance(v, bool) else (0 if isinstance(v, int) else [])) for k, v in DEFAULT_PRIVILEGES.items()}
+ADMIN_PRIVILEGES["allowed_models_restricted"] = False

 DEFAULT_AUTH_PATH = os.path.join(
    Path(__file__).parent.parent, "data", "auth.json"