Access Control: Allow org admins to invite new users (#55585)

* backport change to allow org admins to invite new users to org * remove docs from backport
2022-09-21 16:19:06 +01:00
parent 0e5b1a7c5d
commit 992ea8b765
6 changed files with 11 additions and 36 deletions
@@ -650,7 +650,7 @@ func TestOrgUsersAPIEndpointWithSetPerms_AccessControl(t *testing.T) {
 			desc:         "org viewer with the correct permissions can invite a user as a viewer in his org",
 			url:          "/api/org/invites",
 			method:       http.MethodPost,
-			permissions:  []*accesscontrol.Permission{{Action: accesscontrol.ActionUsersCreate}},
+			permissions:  []*accesscontrol.Permission{{Action: accesscontrol.ActionOrgUsersAdd, Scope: accesscontrol.ScopeUsersAll}},
 			input:        `{"loginOrEmail": "newUserEmail@test.com", "sendEmail": false, "role": "` + string(models.ROLE_VIEWER) + `"}`,
 		},
 		{