Merajul Arefin 8fe98cf471 feat(auth): add per-user admin promote/demote toggle (#3078) ...

* feat(auth): add per-user admin promote/demote toggle

Admin-only API and Users-tab control to grant/revoke admin rights; refuses to demote the last admin.

* fix(auth): restore pre-admin privilege restrictions on demotion

Promoting now stashes the user's privilege map (privileges_before_admin)
and demoting restores it instead of resetting to defaults, so a
promote/demote round trip can no longer broaden a restricted user's
access. Users without a stash (created as admin, or promoted before this
fix) still demote to DEFAULT_PRIVILEGES so a born-admin's stored all-True
map — including can_use_bash — can't survive demotion.

---------

Co-authored-by: K M Merajul Arefin <merajul.arefin@therapservices.net>

2026-06-15 10:44:27 +00:00

..

__init__.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

atomic_io.py

Add native Windows compatibility layer

2026-06-01 15:09:47 +09:00

auth.py

feat(auth): add per-user admin promote/demote toggle (#3078)

2026-06-15 10:44:27 +00:00

constants.py

refactor(constants): single source of truth for data dir (#3368)

2026-06-08 09:58:52 +02:00

database.py

Harden CalDAV write-back with retries (#1193)

2026-06-15 15:59:31 +09:00

exceptions.py

Odysseus v1.0

2026-05-31 23:58:26 +09:00

middleware.py

fix(documents): restore PDF library metadata and preview (#2483)

2026-06-07 23:23:27 +02:00

models.py

fix: session context drifting — messages leaking between chats (#135) (#267)

2026-06-09 14:12:52 +01:00

platform_compat.py

fix(platform): read proc version with utf-8

2026-06-11 21:58:22 +01:00

session_manager.py

fix: session context drifting — messages leaking between chats (#135) (#267)

2026-06-09 14:12:52 +01:00