Skip to content

fix(perm): added unique constraints, and perm checks for member access#2015

Merged
nikkothari22 merged 2 commits into
developfrom
fix-permissions
Feb 1, 2026
Merged

fix(perm): added unique constraints, and perm checks for member access#2015
nikkothari22 merged 2 commits into
developfrom
fix-permissions

Conversation

@nikkothari22

@nikkothari22 nikkothari22 commented Feb 1, 2026

Copy link
Copy Markdown
Member
  • Only Raven Admins can edit Raven Users of type "Bot"
  • Raven Bot link is unique in a Raven User - prevents changing this to bypass perm checks
  • Raven Workspace Member and Channel Member - links to channel and user can only be set once since there's no need to change it after creation. Either you are a member, or you're not.

This does not look like a breaking change but we will see.

@nikkothari22 nikkothari22 changed the title fix(perm): added unique contraints, and perm checks for member access fix(perm): added unique constraints, and perm checks for member access Feb 1, 2026
@nikkothari22 nikkothari22 merged commit f462fa0 into develop Feb 1, 2026
2 checks passed
@nikkothari22 nikkothari22 deleted the fix-permissions branch February 1, 2026 09:29
sagarvora
sagarvora reviewed Feb 1, 2026
View reviewed changes
Comment thread raven/permissions.py
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@sagarvora sagarvora sagarvora left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nikkothari22 @sagarvora