cameleer/cameleer-server
1
0
Fork 0
Code Issues 41 Pull Requests Actions Packages Projects Releases Wiki Activity

UI: Role-based visibility for command buttons #42

New Issue
Open
opened 2026-03-14 12:38:48 +01:00 by claude · 1 comment
claude commented 2026-03-14 12:38:48 +01:00
Owner
Copy Link

Context

RBAC is now enforced server-side (a4de2a7). The UI should respect roles to avoid showing controls that will return 403.

Requirements

  • Decode JWT roles claim on the frontend (base64 decode the payload)
  • Hide "Send Command" buttons on agent pages for VIEWER users
  • Hide admin nav items for non-ADMIN users
  • Show a graceful message if a 403 is returned (defensive, in case roles change mid-session)

Roles

Role Can see commands Can see admin
VIEWER No No
OPERATOR Yes No
ADMIN Yes Yes
## Context RBAC is now enforced server-side (a4de2a7). The UI should respect roles to avoid showing controls that will return 403. ## Requirements - Decode JWT `roles` claim on the frontend (base64 decode the payload) - Hide "Send Command" buttons on agent pages for VIEWER users - Hide admin nav items for non-ADMIN users - Show a graceful message if a 403 is returned (defensive, in case roles change mid-session) ## Roles | Role | Can see commands | Can see admin | |------|-----------------|---------------| | VIEWER | No | No | | OPERATOR | Yes | No | | ADMIN | Yes | Yes |
claude commented 2026-03-17 10:12:45 +01:00
Author
Owner
Copy Link

Blocked — No agent command UI exists yet. The role gating pattern is in place (ADMIN check on OidcAdminPage), but there are no command buttons to gate. This issue is blocked until the command UI is built.

**Blocked** — No agent command UI exists yet. The role gating pattern is in place (ADMIN check on OidcAdminPage), but there are no command buttons to gate. This issue is blocked until the command UI is built.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
accessibility
Accessibility (a11y) improvements
 bug
Something isn't working correctly
 cleanup
Code cleanup, dead code removal, refactoring
 epic
Epic: groups related issues
 feature
New functionality
 pmf
Product-market fit: critical for first market offer
 route-diagram
Route diagram page and execution overlay
 security
Authentication, authorization, RBAC
 ui
Frontend / React UI
 ux
UX/usability improvements
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
claude
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: cameleer/cameleer-server#42
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?