fix: combined_grants_ext already shows only the authorized user's g…

…rants, no need to filter by `user_id` Problem is, `user_id` is null when showing grants that come from `role_grants`, such as `estuary_support`/.
estuary · Oct 10, 2023 · f1ed180 · f1ed180
1 parent 74c1938
commit f1ed180
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/supabase/functions/billing/index.ts b/supabase/functions/billing/index.ts
@@ -39,7 +39,7 @@ serve(async (req) => {
                 throw new Error("User not found");
             }
 
-            const grants = await supabaseClient.from("combined_grants_ext").select("*").eq("capability", "admin").eq("user_id", user.id);
+            const grants = await supabaseClient.from("combined_grants_ext").select("*").eq("capability", "admin");
 
             if (!(grants.data ?? []).find((grant) => grant.object_role === requested_tenant)) {
                 res = [JSON.stringify({ error: `Not authorized to requested grant` }), {