devfront rp_admin tenant_admin 제거

2026-06-08 11:40:31 +09:00
parent c880b3c333
commit 894feb20f1
19 changed files with 45 additions and 113 deletions
--- a/devfront/src/features/clients/ClientsPage.tsx
+++ b/devfront/src/features/clients/ClientsPage.tsx
@@ -93,9 +93,7 @@ function ClientsPage() {
  } = useQuery({
    queryKey: ["developer-request", tenantId],
    queryFn: () => fetchDeveloperRequestStatus(tenantId),
-    enabled:
-      hasAccessToken &&
-      (profileRole === "user" || profileRole === "tenant_member"),
+    enabled: hasAccessToken && profileRole === "user",
  });
  const { data: tenants } = useQuery({
    queryKey: ["myTenants"],
--- a/devfront/src/features/clients/clientCreateAccess.test.ts
+++ b/devfront/src/features/clients/clientCreateAccess.test.ts
@@ -5,7 +5,7 @@ describe("client create access", () => {
  it("allows privileged roles to create clients without developer request approval", () => {
    expect(
      resolveClientCreateAccess({
-        role: "rp_admin",
+        role: "super_admin",
      }),
    ).toBe("can_create");
  });
@@ -31,7 +31,7 @@ describe("client create access", () => {
  it("shows pending state while a developer request is under review", () => {
    expect(
      resolveClientCreateAccess({
-        role: "tenant_member",
+        role: "user",
        requestStatus: "pending",
      }),
    ).toBe("pending");
--- a/devfront/src/features/clients/clientCreateAccess.ts
+++ b/devfront/src/features/clients/clientCreateAccess.ts
@@ -12,7 +12,7 @@ type ResolveClientCreateAccessParams = {
 };

 function canSelfRequestDeveloperAccess(role: string) {
-  return role === "user" || role === "tenant_member";
+  return role === "user";
 }

 export function resolveClientCreateAccess({
--- a/devfront/src/features/developer-access/developerAccessGate.test.ts
+++ b/devfront/src/features/developer-access/developerAccessGate.test.ts
@@ -8,8 +8,7 @@ import {
 describe("developer access gate", () => {
  it("fetches request status only for user roles", () => {
    expect(shouldFetchDeveloperRequestStatus("user")).toBe(true);
-    expect(shouldFetchDeveloperRequestStatus("tenant_admin")).toBe(false);
-    expect(shouldFetchDeveloperRequestStatus("rp_admin")).toBe(false);
+    expect(shouldFetchDeveloperRequestStatus("super_admin")).toBe(false);
  });

  it("resolves access and request states from the request status", () => {
@@ -41,7 +40,7 @@ describe("developer access gate", () => {
  it("shows the loading gate only for user requests", () => {
    expect(shouldShowDeveloperAccessLoading("user", true, false)).toBe(true);
    expect(shouldShowDeveloperAccessLoading("user", false, true)).toBe(true);
-    expect(shouldShowDeveloperAccessLoading("tenant_admin", true, true)).toBe(
+    expect(shouldShowDeveloperAccessLoading("super_admin", true, true)).toBe(
      false,
    );
  });
--- a/devfront/src/features/developer-access/developerAccessGate.ts
+++ b/devfront/src/features/developer-access/developerAccessGate.ts
@@ -11,20 +11,12 @@ export type DeveloperAccessGateState = {
  isLoadingDeveloperAccessGate: boolean;
 };

-function isPrivilegedDeveloperRole(profileRole: string) {
-  return (
-    profileRole === "super_admin" ||
-    profileRole === "rp_admin" ||
-    profileRole === "tenant_admin"
-  );
-}
-
 export function resolveDeveloperAccessGate(
  profileRole: string,
  requestStatus?: DeveloperRequestStatus,
 ): Omit<DeveloperAccessGateState, "isLoadingDeveloperAccessGate"> {
  const hasDeveloperAccess =
-    isPrivilegedDeveloperRole(profileRole) || requestStatus === "approved";
+    profileRole === "super_admin" || requestStatus === "approved";
  const isDeveloperRequestPending = requestStatus === "pending";
  const canRequestDeveloperAccess =
    profileRole === "user" && !hasDeveloperAccess && !isDeveloperRequestPending;