264861e020
In this PR 1. adding tests on relations and nested relations to make sure that if any permission is missing, the query fails 2. adding tests on objectRecord permissions to make sure that permissions granted or restricted by objectPermissions take precedence on the role's allObjectRecords permissions
32 lines
676 B
TypeScript
32 lines
676 B
TypeScript
export const updateWorkspaceMemberRole = async ({
|
|
client,
|
|
roleId,
|
|
workspaceMemberId,
|
|
}: {
|
|
client: any;
|
|
roleId: string;
|
|
workspaceMemberId: string;
|
|
}) => {
|
|
const updateMemberRoleQuery = {
|
|
query: `
|
|
mutation UpdateWorkspaceMemberRole {
|
|
updateWorkspaceMemberRole(
|
|
workspaceMemberId: "${workspaceMemberId}"
|
|
roleId: "${roleId}"
|
|
) {
|
|
id
|
|
roles {
|
|
id
|
|
label
|
|
}
|
|
}
|
|
}
|
|
`,
|
|
};
|
|
|
|
await client
|
|
.post('/graphql')
|
|
.set('Authorization', `Bearer ${ADMIN_ACCESS_TOKEN}`)
|
|
.send(updateMemberRoleQuery);
|
|
};
|