From ae637af6dce9499692e84313ebbe779e2fdde6ea Mon Sep 17 00:00:00 2001
From: Frederick Muriuki Muriithi
Date: Tue, 22 Jul 2025 12:10:24 -0500
Subject: Migrations: New privilege (system:user:edit)

Add a new privilege to give users the general ability to edit user
information at the 'system level', i.e. edit user information for any
user.
---
 ...2_01_7Gro7-create-new-system-user-edit-privilege.py | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 migrations/auth/20250722_01_7Gro7-create-new-system-user-edit-privilege.py

(limited to 'migrations/auth/20250722_01_7Gro7-create-new-system-user-edit-privilege.py')

diff --git a/migrations/auth/20250722_01_7Gro7-create-new-system-user-edit-privilege.py b/migrations/auth/20250722_01_7Gro7-create-new-system-user-edit-privilege.py
new file mode 100644
index 0000000..f00ab11
--- /dev/null
+++ b/migrations/auth/20250722_01_7Gro7-create-new-system-user-edit-privilege.py
@@ -0,0 +1,18 @@
+"""
+Create new 'system:user:edit' privilege.
+"""
+
+from yoyo import step
+
+__depends__ = {'20250703_01_aDVwP-add-role-management-privileges-to-group-leader-role'}
+
+steps = [
+    step(
+        """
+        INSERT INTO privileges(privilege_id, privilege_description)
+        VALUES(
+          'system:user:edit',
+          'Allow general user-information edit.')
+        """,
+        "DELETE FROM privileges WHERE privilege_id='system:user:edit'")
+]
-- 
cgit 1.4.1