Remove link that's not necessary (#3266)

## About the changes Tested manually as admin in enterprise: ![image](https://user-images.githubusercontent.com/455064/223457013-abd3a16c-5aff-427a-a8a9-32695073309b.png) Admin should have a special permission that gives super-powers. There's no need to have specific permissions linked to it. Based of: a077967760/src/migrations/20220307130902-add-segments.js (L32-L46)
2025-02-23 00:22:19 +01:00 · 2023-03-08 10:25:54 +01:00 · 2023-03-08 10:25:54 +01:00 · dfe068ee33
commit dfe068ee33
parent 1b001ad485
1 changed files with 35 additions and 0 deletions
--- a/src/migrations/20230306103400-remove-direct-link-from-segment-permissions-to-admin.js
+++ b/src/migrations/20230306103400-remove-direct-link-from-segment-permissions-to-admin.js
@ -0,0 +1,35 @@
+exports.up = function (db, cb) {
+    db.runSql(
+        `
+        DELETE FROM role_permission 
+        WHERE permission_id IN (
+                    SELECT id FROM permissions WHERE permission IN (
+                        'DELETE_SEGMENT',
+                        'UPDATE_SEGMENT',
+                        'CREATE_SEGMENT'
+                    )) 
+        AND role_id IN (SELECT id FROM roles r WHERE r.name = 'Admin');
+        `,
+        cb,
+    );
+};
+
+exports.down = function (db, cb) {
+    db.runSql(
+        `
+        insert into role_permission (role_id, permission_id)
+            select
+                r.id as role_id,
+                p.id as permission_id
+            from roles r
+            cross join permissions p
+            where r.name = 'Admin'
+            and p.permission in  (
+                'CREATE_SEGMENT',
+                'UPDATE_SEGMENT',
+                'DELETE_SEGMENT'
+            );
+        `,
+        cb,
+    );
+};