From de12b232d9d9f5b8a739c28f5cdc1b20a2d2d7a9 Mon Sep 17 00:00:00 2001
From: Matt <matt@Matt-Surface.local>
Date: Mon, 6 Apr 2026 16:34:38 -0400
Subject: [PATCH] fix: allow AWARD_MASTER role to access project files

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 src/server/routers/file.ts | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/src/server/routers/file.ts b/src/server/routers/file.ts
index 98b02cf..34a1ea2 100644
--- a/src/server/routers/file.ts
+++ b/src/server/routers/file.ts
@@ -22,7 +22,7 @@ export const fileRouter = router({
       })
     )
     .query(async ({ ctx, input }) => {
-      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER'].includes(ctx.user.role)
+      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER', 'AWARD_MASTER'].includes(ctx.user.role)
 
       if (!isAdminOrObserver) {
         const file = await ctx.prisma.projectFile.findFirst({
@@ -307,7 +307,7 @@ export const fileRouter = router({
       roundId: z.string().optional(),
     }))
     .query(async ({ ctx, input }) => {
-      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER'].includes(ctx.user.role)
+      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER', 'AWARD_MASTER'].includes(ctx.user.role)
 
       if (!isAdminOrObserver) {
         const [juryAssignment, mentorAssignment, teamMembership] = await Promise.all([
@@ -376,7 +376,7 @@ export const fileRouter = router({
       roundId: z.string(),
     }))
     .query(async ({ ctx, input }) => {
-      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER'].includes(ctx.user.role)
+      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER', 'AWARD_MASTER'].includes(ctx.user.role)
 
       if (!isAdminOrObserver) {
         const [juryAssignment, mentorAssignment, teamMembership] = await Promise.all([
@@ -496,7 +496,7 @@ export const fileRouter = router({
       })
     )
     .mutation(async ({ ctx, input }) => {
-      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER'].includes(ctx.user.role)
+      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER', 'AWARD_MASTER'].includes(ctx.user.role)
 
       if (!isAdminOrObserver) {
         // Check user has access to the project (assigned or team member)
@@ -680,7 +680,7 @@ export const fileRouter = router({
       })
     )
     .query(async ({ ctx, input }) => {
-      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER'].includes(ctx.user.role)
+      const isAdminOrObserver = ['SUPER_ADMIN', 'PROGRAM_ADMIN', 'OBSERVER', 'AWARD_MASTER'].includes(ctx.user.role)
 
       if (!isAdminOrObserver) {
         const [assignment, mentorAssignment, teamMembership] = await Promise.all([