From 7395b038721c17cf9696552ba61576df2b84eebc Mon Sep 17 00:00:00 2001
From: mertmit <mertmit99@gmail.com>
Date: Wed, 6 Sep 2023 14:11:06 +0300
Subject: [PATCH] fix: all access to super user

Signed-off-by: mertmit <mertmit99@gmail.com>
---
 .../src/middlewares/extract-ids/extract-ids.middleware.ts    | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts b/packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts
index ae820792c4..6dd0c79582 100644
--- a/packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts
+++ b/packages/nocodb/src/middlewares/extract-ids/extract-ids.middleware.ts
@@ -211,7 +211,10 @@ export class AclMiddleware implements NestInterceptor {
 
     const req = context.switchToHttp().getRequest();
 
-    const userScopeRole = getUserRoleForScope(req.user, scope);
+    const userScopeRole =
+      req.user.roles?.[OrgUserRoles.SUPER_ADMIN] === true
+        ? OrgUserRoles.SUPER_ADMIN
+        : getUserRoleForScope(req.user, scope);
 
     if (!userScopeRole) {
       NcError.forbidden('Unauthorized access');