fix: frontend permission check (#784)

api/services/workspace_service.py

@@ -1,11 +1,14 @@
+from flask_login import current_user
 from extensions.ext_database import db
-from models.account import Tenant
+from models.account import Tenant, TenantAccountJoin
 from models.provider import Provider
 
 
 class WorkspaceService:
     @classmethod
     def get_tenant_info(cls, tenant: Tenant):
+        if not tenant:
+            return None
         tenant_info = {
             'id': tenant.id,
             'name': tenant.name,
@@ -13,10 +16,18 @@ class WorkspaceService:
             'status': tenant.status,
             'created_at': tenant.created_at,
             'providers': [],
-            'in_trial': True,
-            'trial_end_reason': None
+            'in_trail': True,
+            'trial_end_reason': None,
+            'role': 'normal',
         }
 
+        # Get role of user
+        tenant_account_join = db.session.query(TenantAccountJoin).filter(
+            TenantAccountJoin.tenant_id == tenant.id,
+            TenantAccountJoin.account_id == current_user.id
+        ).first()
+        tenant_info['role'] = tenant_account_join.role
+
         # Get providers
         providers = db.session.query(Provider).filter(
             Provider.tenant_id == tenant.id