hackforla · trillium · Mar 25, 2025 · Feb 11, 2025 · Mar 11, 2025 · Mar 11, 2025
diff --git a/backend/middleware/user.middleware.js b/backend/middleware/user.middleware.js
@@ -15,7 +15,7 @@ function isAdminByEmail(req, res, next) {
       return res.sendStatus(400);
     } else {
       const role = user.accessLevel;
-      if (role === 'admin' || user.managedProjects.length > 0) {
+      if (role === 'admin' || role === 'superadmin' || user.managedProjects.length > 0) {
         next();
       } else {
         next(res.sendStatus(401));

diff --git a/backend/routers/grantpermission.router.js b/backend/routers/grantpermission.router.js
@@ -73,7 +73,7 @@ router.post("/gitHub", async (req, res) => {
 
   const teamSlugs = [baseTeamSlug, managerTeamSlug];
 
-  if (accessLevel === "admin") teamSlugs.push(adminTeamSlug);
+  if (accessLevel === "admin" || accessLevel === "superadmin") teamSlugs.push(adminTeamSlug);
 
   function createSlug(string) {
     let slug = string.toLowerCase();

diff --git a/client/src/components/Navbar.jsx b/client/src/components/Navbar.jsx
@@ -59,7 +59,7 @@ const Navbar = (props) => {
             </>
           )}
           {/* Admin auth -> Displays 2 links -> 'Users' and 'Projects'. */}
-          {auth?.user?.accessLevel === 'admin' && (
+          {(auth?.user?.accessLevel === 'admin' || auth?.user?.accessLevel === 'superadmin') && (
             <>
               <StyledButton component={NavLink} to="/users">
                 USERS

diff --git a/client/src/components/ProjectForm.jsx b/client/src/components/ProjectForm.jsx
@@ -234,7 +234,7 @@ export default function ProjectForm({
       <Box sx={{ textAlign: 'center' }}>
         <Typography variant="h1">Project Management</Typography>
       </Box>
-      {auth.user.accessLevel === 'admin' ? (
+      {(auth.user.accessLevel === 'admin'  || auth.user.accessLevel == 'superadmin' )? (
         <TitledBox
           title={editMode ? 'Editing Project' : 'Project Information'}
           badge={isEdit ? editIcon() : addIcon()}

diff --git a/client/src/components/manageProjects/editableField.jsx b/client/src/components/manageProjects/editableField.jsx
@@ -9,7 +9,7 @@ const EditableField = ({
   fieldType = 'text',
   fieldTitle,
   accessLevel,
-  canEdit = ['admin'],
+  canEdit = ['admin', 'superadmin'],
 }) => {
   const [fieldValue, setFieldValue] = useState(fieldData);
   const [editable, setEditable] = useState(false);

diff --git a/client/src/components/manageProjects/selectProject.jsx b/client/src/components/manageProjects/selectProject.jsx
@@ -9,7 +9,7 @@ const SelectProject = ({ projects, accessLevel, user }) => {
   // If access level is 'user' display user managed projects.
   const managedProjects = projects
     ?.filter((proj) => {
-      if (accessLevel === 'admin') {
+      if (accessLevel === 'admin' || accessLevel === 'superadmin') {
         return proj.projectStatus === 'Active';
       }
 
@@ -31,7 +31,7 @@ const SelectProject = ({ projects, accessLevel, user }) => {
     <div className="container--ManageProjects">
       <Typography variant="h3">Project Management</Typography>
       <div className="project-sub-heading" style={{ margin: '0 auto' }}>
-        {accessLevel === 'admin' && (
+        {accessLevel === 'admin' || accessLevel === 'superadmin' && (
           <Link to="/projects/create">
             {' '}
             <Button variant="secondary" sx={{ mb: 3 }}>

diff --git a/client/src/context/authContext.jsx b/client/src/context/authContext.jsx
@@ -51,7 +51,7 @@ const fetchAuth = async () => {
       return { user: null, isAdmin: false, isError: true };
 
     const user = await response.json();
-    return { user, isAdmin: user.accessLevel === 'admin', isError: false };
+    return { user, isAdmin: (user.accessLevel === 'admin' || user.accessLevel === 'superadmin'), isError: false };
   } catch (error) {
     // this should never be hit...
     console.error('fetchAuth - error', error);

diff --git a/client/src/pages/ProjectList.jsx b/client/src/pages/ProjectList.jsx
@@ -40,12 +40,12 @@ export default function ProjectList({ auth }) {
       async function fetchAllProjects() {
         let projectData;
 
-        if(user?.accessLevel === 'admin') {
+        if(user?.accessLevel === 'admin' || user?.accessLevel === 'superadmin') {
           projectData = await projectApiService.fetchProjects();
         }
 
         // if user is not admin, but is a project manager, only show projects they manage
-        if (user?.accessLevel !== 'admin' && user?.managedProjects.length > 0) {
+        if ((user?.accessLevel !== 'admin' || user?.accessLevel !== 'superadmin') && user?.managedProjects.length > 0) {
           projectData = await projectApiService.fetchPMProjects(user.managedProjects);
         }
 
@@ -80,7 +80,7 @@ export default function ProjectList({ auth }) {
         </Typography>
       </Box>
 
-      {user?.accessLevel === 'admin' && (
+      {(user?.accessLevel === 'admin' || user?.accessLevel === 'superadmin') && (
         <Box sx={{ textAlign: 'center' }}>
           <Button
             component={Link}

diff --git a/client/src/utils/authUtils.js b/client/src/utils/authUtils.js
@@ -3,6 +3,8 @@ export function authLevelRedirect(user) {
   let userAccessLevel = user.accessLevel;
 
   switch (userAccessLevel) {
+    case 'superadmin':
+      loginRedirect = '/welcome'
     case 'admin':
       loginRedirect = '/welcome';
       break;