feat(auth): Add admin & early access flags based on orgs membership #1365
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR adds a check on the login callback, so that if a user is part of a specific hub org they will get access to early access or admin features automatically.
This can be used to feature flag new features or give moderation rights automatically without going through the DB.
Caveat is that the check only occurs on login, so flags are only updated on log-in, not when reusing a session. I think this is an OK tradeoff and if we need to force update flags on someone we can always either do it manually or force a logout by deleting matching sessions.