michal/mcpctl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: migrate legacy admin role at startup #21

Merged
michal merged 1 commits from fix/migrate-legacy-admin-role into main 2026-02-23 11:31:32 +00:00
Conversation 0 Commits 1 Files Changed 2 +93
michal commented 2026-02-23 11:31:29 +00:00
Owner
Copy Link

Converts old admin role bindings to granular edit+run on mcpd boot. Adds tests for unknown role denial.

Converts old admin role bindings to granular edit+run on mcpd boot. Adds tests for unknown role denial.
michal added 1 commit 2026-02-23 11:31:29 +00:00
fix: migrate legacy admin role to granular roles at startup
Some checks failed
CI / lint (pull_request) Has been cancelled
Details
CI / typecheck (pull_request) Has been cancelled
Details
CI / test (pull_request) Has been cancelled
Details
CI / build (pull_request) Has been cancelled
Details
CI / package (pull_request) Has been cancelled
Details
ec1dfe7438 
- Add migrateAdminRole() that runs on mcpd boot
- Converts { role: 'admin', resource: X } → edit + run bindings
- Adds operation bindings for wildcard admin (impersonate, logs, etc.)
- Add tests verifying unknown/legacy roles are denied by canAccess

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
michal merged commit c8cdd7f514 into main 2026-02-23 11:31:32 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
michal
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: michal/mcpctl#21
Delete Branch "fix/migrate-legacy-admin-role"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?