fix: manage all projects permissions, edit, view, delete, create gf-4…

…11 (#424)

* fix: adjusted so creating, viewing and editing groups is allowed gf-411

* fix: adjusted so creating, viewing, deleting and editing groups is allowed gf-411

* fix: merge conflict on pull request gf-411

* fix: resolved merge conflict gf-411

* fix: adjusted project details menu to now show for manage users access permission gf-411

apps/backend/src/modules/project-groups/project-group.controller.ts

@@ -70,7 +70,12 @@ class ProjectGroupController extends BaseController {
 				),
 			method: "POST",
 			path: ProjectGroupsApiPath.ROOT,
-			preHandlers: [checkUserPermissions([PermissionKey.MANAGE_USER_ACCESS])],
+			preHandlers: [
+				checkUserPermissions([
+					PermissionKey.MANAGE_USER_ACCESS,
+					PermissionKey.MANAGE_ALL_PROJECTS,
+				]),
+			],
 			validation: {
 				body: projectGroupCreateValidationSchema,
 			},
@@ -81,7 +86,12 @@ class ProjectGroupController extends BaseController {
 				this.delete(options as APIHandlerOptions<{ params: { id: string } }>),
 			method: "DELETE",
 			path: ProjectGroupsApiPath.$ID,
-			preHandlers: [checkUserPermissions([PermissionKey.MANAGE_USER_ACCESS])],
+			preHandlers: [
+				checkUserPermissions([
+					PermissionKey.MANAGE_USER_ACCESS,
+					PermissionKey.MANAGE_ALL_PROJECTS,
+				]),
+			],
 		});
 
 		this.addRoute({
@@ -94,7 +104,12 @@ class ProjectGroupController extends BaseController {
 				),
 			method: "GET",
 			path: ProjectGroupsApiPath.$ID,
-			preHandlers: [checkUserPermissions([PermissionKey.MANAGE_USER_ACCESS])],
+			preHandlers: [
+				checkUserPermissions([
+					PermissionKey.MANAGE_USER_ACCESS,
+					PermissionKey.MANAGE_ALL_PROJECTS,
+				]),
+			],
 		});
 
 		this.addRoute({
@@ -107,6 +122,7 @@ class ProjectGroupController extends BaseController {
 				),
 			method: "PATCH",
 			path: ProjectGroupsApiPath.$ID,
+			preHandlers: [checkUserPermissions([PermissionKey.MANAGE_ALL_PROJECTS])],
 			validation: {
 				body: projectGroupPatchValidationSchema,
 			},

apps/backend/src/modules/users/user.controller.ts

@@ -52,7 +52,12 @@ class UserController extends BaseController {
 				),
 			method: "GET",
 			path: UsersApiPath.ROOT,
-			preHandlers: [checkUserPermissions([PermissionKey.MANAGE_USER_ACCESS])],
+			preHandlers: [
+				checkUserPermissions([
+					PermissionKey.MANAGE_USER_ACCESS,
+					PermissionKey.MANAGE_ALL_PROJECTS,
+				]),
+			],
 		});
 
 		this.addRoute({

apps/frontend/src/index.tsx

@@ -120,7 +120,10 @@ createRoot(document.querySelector("#root") as HTMLElement).render(
 							{
 								element: (
 									<ProtectedRoute
-										routePermissions={[PermissionKey.MANAGE_USER_ACCESS]}
+										routePermissions={[
+											PermissionKey.MANAGE_USER_ACCESS,
+											PermissionKey.MANAGE_ALL_PROJECTS,
+										]}
 									>
 										<ProjectAccessManagement />
 									</ProtectedRoute>

apps/frontend/src/pages/project/libs/components/project-details-menu/project-details-menu.tsx

@@ -30,7 +30,7 @@ const ProjectDetailsMenu = ({
 	);
 
 	const hasManageProjectAccessPermission = checkHasPermission(
-		[PermissionKey.MANAGE_USER_ACCESS],
+		[PermissionKey.MANAGE_USER_ACCESS, PermissionKey.MANAGE_ALL_PROJECTS],
 		userPermissions,
 	);
 	const hasEditProjectPermission = checkHasPermission(