fix: add comment

brettkolodny · brettkolodny · commit 73e356c4fc88 · 2025-03-10T16:00:56.000Z
diff --git a/coderd/database/dbauthz/dbauthz.go b/coderd/database/dbauthz/dbauthz.go
@@ -3582,6 +3582,7 @@ func (q *querier) OrganizationMembers(ctx context.Context, arg database.Organiza
 }
 
 func (q *querier) PaginatedOrganizationMembers(ctx context.Context, arg database.PaginatedOrganizationMembersParams) ([]database.PaginatedOrganizationMembersRow, error) {
+	// Required to have permission to read all members in the organization
 	if err := q.authorizeContext(ctx, policy.ActionRead, rbac.ResourceOrganizationMember.InOrg(arg.OrganizationID)); err != nil {
 		return nil, err
 	}
diff --git a/coderd/database/dbauthz/dbauthz_test.go b/coderd/database/dbauthz/dbauthz_test.go
@@ -987,6 +987,12 @@ func (s *MethodTestSuite) TestOrganization() {
 	}))
 	s.Run("PaginatedOrganizationMembers", s.Subtest(func(db database.Store, check *expects) {
 		o := dbgen.Organization(s.T(), db, database.Organization{})
+		u := dbgen.User(s.T(), db, database.User{})
+		mem := dbgen.OrganizationMember(s.T(), db, database.OrganizationMember{
+			OrganizationID: o.ID,
+			UserID:         u.ID,
+			Roles:          []string{rbac.RoleOrgAdmin()},
+		})
 
 		check.Args(database.PaginatedOrganizationMembersParams{
 			OrganizationID: o.ID,

Original file line number	Diff line number	Diff line change
`@@ -3582,6 +3582,7 @@ func (q *querier) OrganizationMembers(ctx context.Context, arg database.Organiza`
`3582`	`3582`	`}`
`3583`	`3583`
`3584`	`3584`	`func (q *querier) PaginatedOrganizationMembers(ctx context.Context, arg database.PaginatedOrganizationMembersParams) ([]database.PaginatedOrganizationMembersRow, error) {`
	`3585`	`+ // Required to have permission to read all members in the organization`
`3585`	`3586`	`if err := q.authorizeContext(ctx, policy.ActionRead, rbac.ResourceOrganizationMember.InOrg(arg.OrganizationID)); err != nil {`
`3586`	`3587`	`return nil, err`
`3587`	`3588`	`}`