Skip to content

feat: migrate SDK and admin to use atomic member role RPCs#1508

Merged
whoAbhishekSah merged 16 commits intomainfrom
feat/sdk-project-member-management
Apr 10, 2026
Merged

feat: migrate SDK and admin to use atomic member role RPCs#1508
whoAbhishekSah merged 16 commits intomainfrom
feat/sdk-project-member-management

Conversation

@whoAbhishekSah
Copy link
Copy Markdown
Member

@whoAbhishekSah whoAbhishekSah commented Apr 3, 2026
edited
Loading

Summary

  • Migrate React SDK from raw policy CRUD (createPolicy, deletePolicy, listPolicies) to SetProjectMemberRole and RemoveProjectMember RPCs for project member management
  • Migrate admin panel AssignRole dialog from raw policy CRUD to SetOrganizationMemberRole RPC for org member role changes
  • Single role per user per resource — replaces multi-role checkbox with single-select

Changes

SDK (React)

  • Project member add/role change → SetProjectMemberRole (single atomic call)
  • Project member remove → RemoveProjectMember (single atomic call)
  • Role UUIDs used instead of string names
  • AddMemberDropdown receives roles prop for role selection

Admin Panel

  • Org member role assignment → SetOrganizationMemberRole (single atomic call)
  • Removes listPoliciesdeletePolicy × N → createPolicy × N pattern from client
  • Checkboxes preserved for UI consistency but only one role selectable at a time

Why

The old pattern manipulated policies directly from the client — non-atomic, no min-owner checks, error-prone with Promise.allSettled. The new RPCs handle policy + relation management server-side atomically.

Test plan

  • Add project member with role via SDK
  • Change project member role via SDK
  • Remove project member via SDK
  • Change org member role via admin panel AssignRole dialog
  • Verify single role selection in admin AssignRole
  • Verify min-owner constraint on org role changes

🤖 Generated with Claude Code

@vercel
Copy link
Copy Markdown

vercel bot commented Apr 3, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
frontier Ready Ready Preview, Comment Apr 10, 2026 9:53am

@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai bot commented Apr 3, 2026
edited
Loading

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

  • @coderabbitai resume to resume automatic reviews.
  • @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

  • ▶️ Resume reviews
  • 🔍 Trigger review
📝 Walkthrough

Walkthrough

Replaces client-side policy CRUD (listPolicies/deletePolicy/createPolicy/createPolicyForProject) with direct role-based mutations (setProjectMemberRole, removeProjectMember) across Admin and React SDK UIs, adding role lookups (listRoles) where needed and simplifying request bodies to principalId/principalType/roleId.

Changes

Cohort / File(s) Summary
Admin SDK member role management
web/sdk/admin/views/organizations/details/projects/members/assign-role.tsx, web/sdk/admin/views/organizations/details/projects/members/remove-member.tsx, web/sdk/admin/views/organizations/details/projects/use-add-project-members.tsx		 Removed policy-diff and per-policy delete/create flows; replaced with setProjectMemberRole / removeProjectMember calls and added listRoles role-id resolution. Removed Connect/transport and policy request schemas.
React SDK project members (classic)
web/sdk/react/views/projects/details/project-member-columns.tsx, web/sdk/react/views/projects/details/project-members.tsx, web/sdk/react/views/projects/details/remove-project-member-dialog.tsx		 Replaced multi-step policy replacement/deletion with setProjectMemberRole and removeProjectMember mutations; added viewer/role resolution gating and principalType handling; updated hook deps and removed policy queries.
React SDK project members (new UI)
web/sdk/react/views-new/projects/components/add-member-menu.tsx, web/sdk/react/views-new/projects/components/remove-member-dialog.tsx, web/sdk/react/views-new/projects/project-details-view.tsx		 Switched from createPolicyForProject/listPolicies+deletes to listRoles + setProjectMemberRole / removeProjectMember; compute principalType from member type and gate actions on resolved role ids.
React SDK service accounts / API keys
web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx, web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx		 Replaced createPolicyForProject with setProjectMemberRole; added listRoles to compute owner role id and error/gate when missing; revoked access now calls removeProjectMember.
Dialogs & hooks updates
web/sdk/react/views-new/projects/components/remove-member-dialog.tsx, web/sdk/react/views/projects/details/remove-project-member-dialog.tsx, web/sdk/admin/.../remove-member.tsx, web/sdk/admin/.../use-add-project-members.tsx		 Introduced optional memberType (`'user'
Docs
docs/membership-package-tasks.md		 Added documentation describing a new core/membership package and migration tasks for consolidating membership RPCs and behavior (no code API changes).

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related issues

Possibly related PRs

Suggested reviewers

  • rsbh
  • rohanchkrabrty
  • paanSinghCoder
🚥 Pre-merge checks | ✅ 1 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name Status Explanation Resolution
Out of Scope Changes check ❓ Inconclusive The PR includes additional documentation (membership-package-tasks.md) describing future core/membership package work that appears beyond the current scope of #1462 SDK migrations. Confirm whether the membership-package-tasks.md documentation is intended as part of this PR or should be separated into a distinct documentation task.
✅ Passed checks (1 passed)
Check name Status Explanation
Linked Issues check ✅ Passed All React and Admin SDK files from issue #1462 have been migrated to use SetProjectMemberRole and RemoveProjectMember RPCs, replacing policy-based orchestration workflows.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@whoAbhishekSah
Copy link
Copy Markdown
Member Author

whoAbhishekSah commented Apr 3, 2026
edited
Loading

Manual Testing — PASS

Tested locally with client demo app on clean Frontier + SpiceDB.

Flow Principal Result
Add member to project User PASS
Add member to project Group PASS
Change role on project member User PASS
Remove member from project User PASS

All flows use SetProjectMemberRole / RemoveProjectMember RPCs. No policy RPCs (createPolicyForProject, listPolicies, deletePolicy) in network tab.

@whoAbhishekSah whoAbhishekSah requested review from rohanchkrabrty and rsbh and removed request for rohanchkrabrty April 3, 2026 07:03
coderabbitai[bot]
coderabbitai bot reviewed Apr 3, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)
web/sdk/admin/views/organizations/details/projects/members/assign-role.tsx (1)

88-107: ⚠️ Potential issue | 🔴 Critical

setProjectMemberRole only preserves the last role in this loop.

This RPC replaces the member’s project role set; it does not append to it. Iterating assignedRolesArr here means each call overwrites the previous one, so only the last role survives while onRoleUpdate still reports every selected role locally.

Suggested fix 
   const onSubmit = async (data: FormData) => {
     try {
       const assignedRolesArr = Array.from(data.roleIds);
+      if (assignedRolesArr.length !== 1) {
+        throw new Error("Project members can only have one direct project role");
+      }

-      for (const roleId of assignedRolesArr) {
-        await setProjectMemberRole(
-          create(SetProjectMemberRoleRequestSchema, {
-            projectId,
-            principalId: user?.id || "",
-            principalType: "app/user",
-            roleId,
-          }),
-        );
-      }
+      await setProjectMemberRole(
+        create(SetProjectMemberRoleRequestSchema, {
+          projectId,
+          principalId: user?.id || "",
+          principalType: "app/user",
+          roleId: assignedRolesArr[0],
+        }),
+      );
web/sdk/react/views/projects/details/remove-project-member-dialog.tsx (1)

20-25: ⚠️ Potential issue | 🟠 Major

Make memberType required instead of defaulting to 'user'.

This makes missing caller updates look valid. web/sdk/react/views/projects/details/project-detail-page.tsx:255-260 still opens the dialog without memberType, so removing a team member will continue to send app/user and fail. Making the prop required forces the remaining call sites to pass the correct principal type.

Suggested fix 
 export interface RemoveProjectMemberDialogProps {
     open: boolean;
     onOpenChange?: (value: boolean) => void;
     projectId: string;
     memberId: string;
-    memberType?: 'user' | 'group';
+    memberType: 'user' | 'group';
 }
@@
 export const RemoveProjectMemberDialog = ({
     open,
     onOpenChange,
     projectId,
     memberId,
-    memberType = 'user'
+    memberType
 }: RemoveProjectMemberDialogProps) => {

Also applies to: 32-33, 52-57

ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 96b266ff-0062-46b1-bc94-f27ec9d10147

📥 Commits

Reviewing files that changed from the base of the PR and between 1b73eaf and ccc1d41.

⛔ Files ignored due to path filters (1)
  • web/pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (9)
  • web/sdk/admin/views/organizations/details/projects/members/assign-role.tsx
  • web/sdk/admin/views/organizations/details/projects/members/remove-member.tsx
  • web/sdk/admin/views/organizations/details/projects/use-add-project-members.tsx
  • web/sdk/package.json
  • web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx
  • web/sdk/react/views/projects/details/project-member-columns.tsx
  • web/sdk/react/views/projects/details/project-members.tsx
  • web/sdk/react/views/projects/details/remove-project-member-dialog.tsx

@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from 6e6778f to d873d1e Compare April 7, 2026 06:06
@coveralls
Copy link
Copy Markdown

coveralls commented Apr 7, 2026
edited
Loading

Coverage Report for CI Build 24237209757

Coverage remained the same at 41.337%

Details

  • Coverage remained the same as the base build.
  • Patch coverage: No coverable lines changed in this PR.
  • No coverage regressions found.

Uncovered Changes

No uncovered changes found.

Coverage Regressions

No coverage regressions found.

Coverage Stats

Coverage Status
Relevant Lines: 36432
Covered Lines: 15060
Line Coverage: 41.34%
Coverage Strength: 11.88 hits per line
💛 - Coveralls

coderabbitai[bot]
coderabbitai bot reviewed Apr 7, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 4

♻️ Duplicate comments (1)
web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx (1)

179-223: ⚠️ Potential issue | 🟠 Major

Add ownerRoleId to the callback dependencies.

onAccessChange reads ownerRoleId on Lines 188 and 194, but Line 223 omits it. When listRoles resolves after the dialog opens, the callback can keep the initial empty string and continue throwing “Project owner role not found” on grant attempts until another dependency changes.

Suggested fix 
-    [serviceUserId, setProjectMemberRole, removeProjectMember]
+    [serviceUserId, ownerRoleId, setProjectMemberRole, removeProjectMember]
ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 9cfd1e26-ef92-4f05-9d62-76ad0532fd3c

📥 Commits

Reviewing files that changed from the base of the PR and between ccc1d41 and d873d1e.

⛔ Files ignored due to path filters (1)
  • web/pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml
📒 Files selected for processing (12)
  • web/sdk/admin/views/organizations/details/projects/members/assign-role.tsx
  • web/sdk/admin/views/organizations/details/projects/members/remove-member.tsx
  • web/sdk/admin/views/organizations/details/projects/use-add-project-members.tsx
  • web/sdk/package.json
  • web/sdk/react/views-new/projects/components/add-member-menu.tsx
  • web/sdk/react/views-new/projects/components/remove-member-dialog.tsx
  • web/sdk/react/views-new/projects/project-details-view.tsx
  • web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx
  • web/sdk/react/views/projects/details/project-member-columns.tsx
  • web/sdk/react/views/projects/details/project-members.tsx
  • web/sdk/react/views/projects/details/remove-project-member-dialog.tsx
✅ Files skipped from review due to trivial changes (3)
  • web/sdk/package.json
  • web/sdk/react/views/projects/details/project-member-columns.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx
🚧 Files skipped from review as they are similar to previous changes (1)
  • web/sdk/admin/views/organizations/details/projects/members/remove-member.tsx

@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from c7c1ca0 to cfeb60b Compare April 8, 2026 05:52
coderabbitai[bot]
coderabbitai bot reviewed Apr 8, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (3)
web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx (2)

128-153: ⚠️ Potential issue | 🟠 Major

Validate ownerRoleId before creating the service user.

The validation at line 145 occurs after createServiceUser (line 133). If ownerRoleId is empty (e.g., roles query is slow or the role name doesn't match), the service user will be created but left orphaned without project access.

Suggested fix: validate early 
   const onSubmit = useCallback(
     async (data: FormData) => {
       if (!orgId) return;
+      if (!ownerRoleId) {
+        toast.error('Something went wrong', {
+          description: 'Project owner role not found'
+        });
+        return;
+      }

       try {
         const serviceUserResponse = await createServiceUser(
           create(CreateServiceUserRequestSchema, {
             orgId,
             body: create(ServiceUserRequestBodySchema, {
               title: data.title
             })
           })
         );

         const serviceUserId = serviceUserResponse.serviceuser?.id;
         if (!serviceUserId) return;

-        if (!ownerRoleId) throw new Error('Project owner role not found');
         await setProjectMemberRole(

201-209: ⚠️ Potential issue | 🟠 Major

Add ownerRoleId to the dependency array.

The callback uses ownerRoleId (lines 145, 151) but it's missing from the dependency array. This causes a stale closure: the callback captures the initial empty string even after listRoles resolves, leading to "Project owner role not found" errors.

Suggested fix 
     [
       orgId,
+      ownerRoleId,
       createServiceUser,
       setProjectMemberRole,
       createServiceUserToken,
       queryClient,
       transport,
       onCreated
     ]
web/sdk/admin/views/organizations/details/projects/use-add-project-members.tsx (1)

68-89: ⚠️ Potential issue | 🟡 Minor

Silent failure when viewerRoleId is missing.

The early return at line 70 silently exits without user feedback if viewerRoleId is empty (e.g., role not found or query still loading). Users clicking "Add" see no response.

Consider adding a toast or ensuring the add button is disabled while roles are loading.

Suggested fix 
   const addMember = useCallback(
     async (userId: string) => {
-      if (!userId || !projectId || !viewerRoleId) return;
+      if (!userId || !projectId) return;
+      if (!viewerRoleId) {
+        toast.error("Unable to add member", { description: "Project viewer role not found" });
+        return;
+      }
       try {
♻️ Duplicate comments (1)
web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx (1)

179-224: ⚠️ Potential issue | 🟠 Major

onAccessChange closes over a stale ownerRoleId.

The callback uses ownerRoleId at lines 188 and 194, but it's missing from the dependency array at line 223. When the dialog opens and listRoles populates the role ID, onAccessChange still holds the stale empty string from initial render, causing "Project owner role not found" errors.

Suggested fix 
-    [serviceUserId, setProjectMemberRole, removeProjectMember]
+    [serviceUserId, ownerRoleId, setProjectMemberRole, removeProjectMember]
ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 3466a0ec-412a-4b4e-a218-712d1f8d0ba5

📥 Commits

Reviewing files that changed from the base of the PR and between c7c1ca0 and cfeb60b.

📒 Files selected for processing (11)
  • web/sdk/admin/views/organizations/details/projects/members/assign-role.tsx
  • web/sdk/admin/views/organizations/details/projects/members/remove-member.tsx
  • web/sdk/admin/views/organizations/details/projects/use-add-project-members.tsx
  • web/sdk/react/views-new/projects/components/add-member-menu.tsx
  • web/sdk/react/views-new/projects/components/remove-member-dialog.tsx
  • web/sdk/react/views-new/projects/project-details-view.tsx
  • web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx
  • web/sdk/react/views/projects/details/project-member-columns.tsx
  • web/sdk/react/views/projects/details/project-members.tsx
  • web/sdk/react/views/projects/details/remove-project-member-dialog.tsx
✅ Files skipped from review due to trivial changes (2)
  • web/sdk/react/views-new/projects/components/remove-member-dialog.tsx
  • web/sdk/react/views/projects/details/project-member-columns.tsx
🚧 Files skipped from review as they are similar to previous changes (2)
  • web/sdk/react/views-new/projects/components/add-member-menu.tsx
  • web/sdk/react/views/projects/details/project-members.tsx

coderabbitai[bot]
coderabbitai bot reviewed Apr 8, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🧹 Nitpick comments (1)
docs/membership-package-tasks.md (1)

31-41: Consider adding language specifiers to fenced code blocks.

Several code blocks use plain triple-backticks without a language identifier. While these are pseudo-code/call-chain diagrams rather than compilable code, adding a language hint (e.g., ```text or ```plaintext) would satisfy markdown linters and improve rendering consistency.

Example fix for one block 
-```
-Before:
+```text
+Before:

Also applies to: 180-218, 222-234, 323-344, 400-432, 497-515, 586-600

ℹ️ Review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 89a2c7f1-7a7c-4a9b-9b88-c6324742f82d

📥 Commits

Reviewing files that changed from the base of the PR and between cfeb60b and 0428bb6.

📒 Files selected for processing (4)
  • docs/membership-package-tasks.md
  • web/sdk/react/views-new/projects/components/remove-member-dialog.tsx
  • web/sdk/react/views/api-keys/details/manage-service-user-projects-dialog.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx
🚧 Files skipped from review as they are similar to previous changes (2)
  • web/sdk/react/views-new/projects/components/remove-member-dialog.tsx
  • web/sdk/react/views/api-keys/list/add-service-account-dialog.tsx

@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from 8a6eecd to d8baeb5 Compare April 9, 2026 07:23
@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from 3cacd59 to 89bb65e Compare April 10, 2026 05:11
@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from 16bbb14 to c7a2612 Compare April 10, 2026 08:50
rohanchkrabrty
rohanchkrabrty requested changes Apr 10, 2026
View reviewed changes
whoAbhishekSah and others added 14 commits April 10, 2026 15:16
@whoAbhishekSah @claude
feat: migrate SDK to use SetProjectMemberRole and RemoveProjectMember…
db5934d 
… RPCs

Replace policy-based member management (createPolicyForProject,
listPolicies, deletePolicy, createPolicy) with the new atomic RPCs.

React SDK:
- project-members.tsx: addMember/addTeam use SetProjectMemberRole
- project-member-columns.tsx: updateRole uses SetProjectMemberRole
- remove-project-member-dialog.tsx: uses RemoveProjectMember
- add-service-account-dialog.tsx: uses SetProjectMemberRole
- manage-service-user-projects-dialog.tsx: uses both RPCs

Admin SDK:
- use-add-project-members.tsx: uses SetProjectMemberRole
- remove-member.tsx: uses RemoveProjectMember
- assign-role.tsx: uses SetProjectMemberRole

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: use role UUIDs instead of string names for project member operat…
26a8aa4 
…ions

Fetch project-scoped roles via listRoles and resolve the role UUID
before calling SetProjectMemberRole. Consistent with the role change
dropdown which already uses UUIDs.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: pass roles prop to AddMemberDropdown component
3b244d5 
AddMemberDropdown is a separate child component that needs the
roles array to resolve the viewer role UUID.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
feat: migrate views-new project files to use SetProjectMemberRole and…
2243fb1 
… RemoveProjectMember

Update the design-revamped SDK views to use the new atomic RPCs:
- add-member-menu.tsx: use SetProjectMemberRole with fetched role UUID
- remove-member-dialog.tsx: use RemoveProjectMember
- project-details-view.tsx: use SetProjectMemberRole for role change

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: address review comments on SDK migration
3d02d4e 
- Fix hardcoded principalType in views-new remove-member-dialog:
  pass memberType through payload to support group removal
- Add ownerRoleId to dependency arrays in manage-service-user-projects
  and add-service-account dialogs to prevent stale closures
- Move ownerRoleId validation before service user creation to avoid
  orphaned service users

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: pass memberType through remove member flow for group support
a75aad8 
Both views and views-new now pass the member type (user/group) from
the column action through to the remove dialog and into the
RemoveProjectMember RPC call.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
chore: remove accidentally added doc file
cef814e 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
refactor: change admin assign-role from multi-select to single-select
d5f9939 
SetProjectMemberRole replaces all policies with one role, so the UI
should only allow selecting one role. Changed from checkboxes to
radio buttons to match the API semantics.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
chore: remove unintended mock file
8910abc 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: use Checkbox with single-select logic instead of Radio
4ebcd8e 
Radio component is unstable. Use Checkbox but selecting one
automatically deselects others (single-select behavior).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: migrate admin AssignRole dialog from raw policy CRUD to SetOrgan…
8cb9637 
…izationMemberRole

Replace listPolicies → deletePolicy × N → createPolicy × N pattern
with a single SetOrganizationMemberRole call. Changes multi-role
checkboxes to single-role selection since org membership is one role
per user.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: make memberType required in RemoveProjectMemberDialog
6b6d945 
Prevents silent misuse where group removals would default to
'app/user' principal type and fail. Also fix reset state to
include memberType.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah
Revert "fix: skip redundant policy delete+create when role is unchanged"
05823c4 
This reverts commit 8b12c65.
@whoAbhishekSah @claude
fix: address review feedback — use constants, isDirty, and early returns
8583b0d 
- Use isDirty from react-hook-form instead of manual comparison for
  AssignRole dialogs (org + project), disable Update button when unchanged
- Replace hardcoded principal type strings with SCOPES/PRINCIPAL_TYPES
  constants across admin and react SDK
- Early return instead of throwing error when ownerRoleId is missing
- Disable create button when ownerRoleId is not available

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah whoAbhishekSah force-pushed the feat/sdk-project-member-management branch from 29d8d51 to 8583b0d Compare April 10, 2026 09:46
@whoAbhishekSah @claude
fix: use ~/admin path alias for constants imports
bb4c989 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah @claude
fix: restore core/ files to match main, remove stale revert
f306b11 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@whoAbhishekSah whoAbhishekSah merged commit 90bc5d0 into main Apr 10, 2026
8 checks passed
@whoAbhishekSah whoAbhishekSah deleted the feat/sdk-project-member-management branch April 10, 2026 09:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@rohanchkrabrty rohanchkrabrty rohanchkrabrty approved these changes

@rsbh rsbh Awaiting requested review from rsbh

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@whoAbhishekSah @coveralls @rohanchkrabrty