Allow authorization changes with fine-grained client access and manage-authorization. (#25280)

Signed-off-by: Stan Silvert <ssilvert@redhat.com>

js/apps/admin-ui/src/clients/authorization/policy/PolicyDetails.tsx

@@ -198,7 +198,7 @@ export default function PolicyDetails() {
         <FormAccess
           isHorizontal
           onSubmit={handleSubmit(onSubmit)}
-          role="view-clients"
+          role="anyone" // if you get this far it means you have access
         >
           <FormProvider {...form}>
             <NameDescription isDisabled={isDisabled} prefix="policy" />

js/apps/admin-ui/src/clients/routes/PermissionDetails.tsx

@@ -21,7 +21,11 @@ export const PermissionDetailsRoute: AppRouteObject = {
   breadcrumb: (t) => t("permissionDetails"),
   handle: {
     access: (accessChecker) =>
-      accessChecker.hasAny("manage-clients", "view-authorization"),
+      accessChecker.hasAny(
+        "manage-clients",
+        "view-authorization",
+        "manage-authorization",
+      ),
   },
 };
 

js/apps/admin-ui/src/clients/routes/PolicyDetails.tsx

@@ -20,7 +20,11 @@ export const PolicyDetailsRoute: AppRouteObject = {
   breadcrumb: (t) => t("policyDetails"),
   handle: {
     access: (accessChecker) =>
-      accessChecker.hasAny("manage-clients", "view-authorization"),
+      accessChecker.hasAny(
+        "manage-clients",
+        "view-authorization",
+        "manage-authorization",
+      ),
   },
 };
 

js/apps/admin-ui/src/clients/routes/Resource.tsx

@@ -17,7 +17,11 @@ export const ResourceDetailsRoute: AppRouteObject = {
   breadcrumb: (t) => t("resourceDetails"),
   handle: {
     access: (accessChecker) =>
-      accessChecker.hasAny("manage-clients", "view-authorization"),
+      accessChecker.hasAny(
+        "manage-clients",
+        "view-authorization",
+        "manage-authorization",
+      ),
   },
 };