From dc67971e129197eef4bd300d09b5df6fa8c8250a Mon Sep 17 00:00:00 2001
From: Anand Chowdhary <mail@anandchowdhary.com>
Date: Thu, 3 Sep 2020 15:00:53 +0530
Subject: [PATCH] :bug: Only allow admin, member roles in teams

---
 src/controllers/groups/_id/memberships.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/controllers/groups/_id/memberships.ts b/src/controllers/groups/_id/memberships.ts
index cd9939c72..32f029080 100644
--- a/src/controllers/groups/_id/memberships.ts
+++ b/src/controllers/groups/_id/memberships.ts
@@ -50,7 +50,7 @@ export class GroupMembershipsController {
         groupId: Joi.number().required(),
         newMemberName: Joi.string().min(6).required(),
         newMemberEmail: Joi.string().email().required(),
-        role: Joi.number(),
+        role: Joi.string().allow("ADMIN", "MEMBER").only(),
       },
       {
         groupId,
@@ -92,7 +92,7 @@ export class GroupMembershipsController {
   @Middleware(
     validator(
       {
-        role: Joi.string().allow("OWNER", "ADMIN", "RESELLER", "MEMBER").only(),
+        role: Joi.string().allow("ADMIN", "MEMBER").only(),
       },
       "body"
     )