From 8b308a83b6fb59df324af60bafc57ad8df8ab195 Mon Sep 17 00:00:00 2001
From: Frederick Muriuki Muriithi
Date: Tue, 28 Apr 2026 11:49:45 -0500
Subject: Add a 'system:system-wide:data:view' privilege.

---
 ...ak6O-new-privilege-system-system-wide-data-view.py | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py

diff --git a/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py b/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py
new file mode 100644
index 0000000..2dddc56
--- /dev/null
+++ b/migrations/auth/20260428_01_Tak6O-new-privilege-system-system-wide-data-view.py
@@ -0,0 +1,19 @@
+"""
+New privilege: system:system-wide:data:view
+"""
+
+from yoyo import step
+
+__depends__ = {'20260402_01_Bf8nm-add-user-and-time-tracking-to-resources-table'}
+
+steps = [
+    step(
+        """
+        INSERT INTO privileges(privilege_id, privilege_description)
+        VALUES('system:system-wide:data:view',
+        'A user with this privilege can view any data on the entire system.')
+        """,
+        """
+        DELETE FROM privileges WHERE privilege_id='system:system-wide:data:view'
+        """)
+]
-- 
cgit 1.4.1