Skip to content

Fix: Allow organization members to access requests functionality (#2687) #2698

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Siumauricio merged 1 commit into from
Nov 26, 2025
Merged

Fix: Allow organization members to access requests functionality (#2687) #2698

Siumauricio merged 1 commit into from
Nov 26, 2025

Conversation

@Harikrishnan1367709
Copy link
Contributor

@Harikrishnan1367709 Harikrishnan1367709 commented Sep 26, 2025

Description

Fixes the issue where organization members with all permissions were unable to see or activate the requests functionality, even when the owner had granted them all permissions.

Problem

  • Users reported that even with "all permissions" granted by the organization owner, they couldn't access the requests module
  • The requests page showed "UNAUTHORIZED" for non-owner users
  • Members couldn't activate requests or see when requests were activated by the owner

Root Cause

The requests-related API procedures were using adminProcedure which only allows users with the "owner" role to access them. This meant that even members with all permissions couldn't access the requests functionality.

Solution

Changed the following procedures from adminProcedure to protectedProcedure:

  • readStatsLogs - Used to display requests data in the table
  • haveActivateRequests - Used to check if requests are activated
  • toggleRequests - Used to activate/deactivate requests
  • updateLogCleanup - Used to update log cleanup schedule
  • getLogCleanupStatus - Used to get current log cleanup status

Changes Made

  • File: apps/dokploy/server/api/routers/settings.ts
  • Procedures updated: 5 procedures changed from adminProcedure to protectedProcedure
  • Impact: All authenticated organization members can now access requests functionality

Testing

  • Verified no TypeScript compilation errors
  • Verified no linting errors
  • Confirmed procedures now use protectedProcedure (allows any authenticated user)

Related Issue

Fixes #2687

@Harikrishnan1367709
fix: allow all organization members to access requests functionality …
4b44bc8 
…- Change requests-related procedures from adminProcedure to protectedProcedure - Fixes issue where members with all permissions couldn't see/activate requests - Affects readStatsLogs, haveActivateRequests, toggleRequests, updateLogCleanup, and getLogCleanupStatus - Resolves Dokploy#2687
@Siumauricio Siumauricio merged commit e576c1a into Dokploy:canary Nov 26, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Siumauricio Siumauricio Awaiting requested review from Siumauricio Siumauricio is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Users are unable to see requests

2 participants

@Harikrishnan1367709 @Siumauricio