Skip to content

User Role Management - No API/CLI method to upgrade user to dev/admin role #1734

New issue
New issue
Open
Open
User Role Management - No API/CLI method to upgrade user to dev/admin role#1734
Assignees
tomkis
Labels
enhancementNew feature or request
@jenna-winkler

Description

@jenna-winkler
jenna-winkler
opened on Dec 17, 2025

Problem

Currently there’s no way to upgrade a user from “user” to “admin” role without direct database access. When /api/v1/user returns "role": "user", administrators cannot promote that user through API or CLI methods.

Current behavior

  • Adding user email to AUTH__OIDC__ADMIN_EMAILS environment variable and restarting does not upgrade existing users
  • The env var appears to only be checked during initial user creation
  • Role modification requires direct database access, which may not be available in all deployment scenarios (e.g., DB not on public network)

Expected behavior

Administrators should be able to promote users to higher roles through API endpoints or CLI commands without requiring direct database access.

Proposed solution

  • Add API endpoint allowing admins to promote other users to higher roles
  • Add endpoint for listing users (useful for identifying users to promote)
  • Expose this functionality through agentstack CLI

Metadata

Metadata

Assignees

Labels

enhancementNew feature or request

Type

No type

Projects

Agent Stack

Status

In dev

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions