Create an internal integration and give it enough permissions to update team member roles according to the API documentation (none of the scopes listed work)
Request succeeds, and the user's team role is updated to Admin
Actual Result
Request fails with a 400 error with the following response body.
{"detail":"You do not have permission to edit that user's membership."}
Looking at the code, it seems the check does not solely rely on the scopes but also the roles of the user in the organization and team (which I guess doesn't make sense for an internal integration).
Environment
SaaS (https://sentry.io/)
Steps to Reproduce
Expected Result
Actual Result
Request fails with a 400 error with the following response body.
Looking at the code, it seems the check does not solely rely on the scopes but also the roles of the user in the organization and team (which I guess doesn't make sense for an internal integration).
Product Area
APIs
Link
https://us.sentry.io/api/0/organizations/{organization_id_or_slug}/members/{member_id}/teams/{team_id_or_slug}/
DSN
No response
Version
No response