From 22415a4cc628139f9845da0f4a68084396edfec2 Mon Sep 17 00:00:00 2001
From: "Michael H." <michael@iptables.sh>
Date: Thu, 7 May 2026 16:59:05 +0200
Subject: [PATCH] fix: check edited member, not editor, for org owner
 permission guard (#6024)

fix: check edited member, not editor, for org owner permission guard (#1400)
---
 apps/labrinth/src/routes/v3/teams.rs | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/apps/labrinth/src/routes/v3/teams.rs b/apps/labrinth/src/routes/v3/teams.rs
index e58d4ac60..785e1df07 100644
--- a/apps/labrinth/src/routes/v3/teams.rs
+++ b/apps/labrinth/src/routes/v3/teams.rs
@@ -760,7 +760,19 @@ pub async fn edit_team_member(
                     None
                 };
 
-            if organization_team_member
+            let edited_member_organization_team_member =
+                if let Some(organization) = &organization {
+                    DBTeamMember::get_from_user_id(
+                        organization.team_id,
+                        user_id,
+                        &**pool,
+                    )
+                    .await?
+                } else {
+                    None
+                };
+
+            if edited_member_organization_team_member
                 .as_ref()
                 .is_some_and(|x| x.is_owner)
                 && edit_member