Skip to content

Add staff role with content editing access and admin user management UI#472

Merged
JoeProgrammer88 merged 5 commits intomainfrom
copilot/add-staff-member-login
Mar 12, 2026
Merged

Add staff role with content editing access and admin user management UI#472
JoeProgrammer88 merged 5 commits intomainfrom
copilot/add-staff-member-login

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented Feb 28, 2026
edited
Loading

Admins need to create/manage staff accounts that can log in and edit site content, with the ability to promote staff to admin, demote admins back to staff, and delete staff accounts.

Role & Authorization

  • Added Staff role constant and AdminOrStaff = "Admin,Staff" to IdentityHelper
  • Staff role registered at startup alongside Admin
  • All content controllers now allow AdminOrStaff — staff can edit all content and view analytics: AboutController, AgencyController, CalendarController, AdminController (Analytics), ProgramVideosController, PeopleController
  • UserManagementController remains Admin-only

User Management

  • New UserManagementController (Admin-only): Index, Create, Promote, Demote, Delete
  • Guards against self-demotion and self-deletion
  • New UserManagementViewModel carries user ID, email, and role flags

Navigation

  • Staff users see the full edit nav menu (same as Admin), including Analytics
  • Manage Users link visible to Admin only

Tests

  • 16 new tests for UserManagementController covering all actions and edge cases (self-demotion, invalid IDs, failed creation)

Copilot Summary

This PR was generated by GitHub Copilot.

Original prompt

This section details on the original issue you should resolve

<issue_title>Add staff member as authorized user for logging in/editing</issue_title>
<issue_description>The client would like the capability to add another member of their staff to log in to the website and edit information.

Admin users would need to add/remove new users (with a role of staff) and promote them to an admin role and demote them back to staff. Admins can remove staff member accounts</issue_description>

Comments on the Issue (you are @copilot in this section)

@JoeProgrammer88 Manually added another staff member to the database. So this is no longer an urgent high priority item

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

@JoeProgrammer88
Add staff member role and user management feature
8de745f 
Co-authored-by: JoeProgrammer88 <7156063+JoeProgrammer88@users.noreply.github.com>
Copilot AI changed the title [WIP] Add capability for admin to manage staff user access Add staff role with content editing access and admin user management UI Mar 1, 2026
@JoeProgrammer88 JoeProgrammer88 marked this pull request as ready for review March 12, 2026 16:14
@JoeProgrammer88 JoeProgrammer88 self-requested a review as a code owner March 12, 2026 16:14
JoeProgrammer88
JoeProgrammer88 requested changes Mar 12, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@JoeProgrammer88 JoeProgrammer88 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Except for the UserManagementController, the other controllers should use the AdminOrStaff role for the Authorize instead of Admin from the IdentityHelper class

@JoeProgrammer88
Update remaining controllers to use AdminOrStaff role
6b421c5 
Co-authored-by: JoeProgrammer88 <7156063+JoeProgrammer88@users.noreply.github.com>
Copy link
Copy Markdown
Contributor Author

Copilot AI commented Mar 12, 2026

Except for the UserManagementController, the other controllers should use the AdminOrStaff role for the Authorize instead of Admin from the IdentityHelper class

Done in commit 6b421c5. Updated ProgramVideosController, PeopleController, and AdminController to use AdminOrStaff. The Analytics nav link is also now shown to staff users (it was already inside the AdminOrStaff nav block so no unauthorized users can see it). UserManagementController remains Admin-only.

@JoeProgrammer88 JoeProgrammer88 merged commit cffb9a5 into main Mar 12, 2026
1 check passed
@JoeProgrammer88 JoeProgrammer88 deleted the copilot/add-staff-member-login branch March 12, 2026 18:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@JoeProgrammer88 JoeProgrammer88 JoeProgrammer88 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@JoeProgrammer88 JoeProgrammer88

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add staff member as authorized user for logging in/editing

2 participants

@JoeProgrammer88