From e9fbba285674d0fc2d849db0981fdfcee3019767 Mon Sep 17 00:00:00 2001
From: Robert Patch <robert.gpatch@gmail.com>
Date: Sun, 22 Mar 2026 16:33:21 -0700
Subject: [PATCH] fix: allow USER role to seed/clear family office data (403 on
 Railway)

---
 apps/api/src/app/admin/admin.controller.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/api/src/app/admin/admin.controller.ts b/apps/api/src/app/admin/admin.controller.ts
index ae1b488c6..3f50de501 100644
--- a/apps/api/src/app/admin/admin.controller.ts
+++ b/apps/api/src/app/admin/admin.controller.ts
@@ -338,14 +338,14 @@ export class AdminController {
   }
 
   @Delete('family-office-data')
-  @HasPermission(permissions.accessAdminControl)
+  @HasPermission(permissions.readFamilyOfficeDashboard)
   @UseGuards(AuthGuard('jwt'), HasPermissionGuard)
   public async clearFamilyOfficeData() {
     return this.devSeedService.clearDatabase();
   }
 
   @Post('family-office-data/seed')
-  @HasPermission(permissions.accessAdminControl)
+  @HasPermission(permissions.readFamilyOfficeDashboard)
   @UseGuards(AuthGuard('jwt'), HasPermissionGuard)
   public async seedFamilyOfficeData() {
     return this.devSeedService.populateDummyData({