add superadmin

src/routes/api/auth/register.ts

@@ -92,7 +92,10 @@ async function handler(
 		}
 
 		roles.push("user");
-		if (firstUser) roles.push("admin");
+		if (firstUser) {
+			roles.push("admin");
+			roles.push("superadmin");
+		}
 
 		const [result] = await reservation`
 				SELECT

src/routes/api/files/delete[query].ts

@@ -124,7 +124,7 @@ async function handler(
 		);
 	}
 
-	const isAdmin: boolean = request.session.roles.includes("admin");
+	const isAdmin: boolean = request.session.roles.includes("admin") || request.session.roles.includes("superadmin");
 	const { query: file } = request.params as { query: string };
 	let { files } = requestBody as { files: string[] | string };
 	// const { password } = request.query as { password: string };

src/routes/api/invite/create.ts

@@ -37,7 +37,7 @@ async function handler(
 		);
 	}
 
-	const isAdmin: boolean = request.session.roles.includes("admin");
+	const isAdmin: boolean = request.session.roles.includes("admin") || request.session.roles.includes("superadmin");
 
 	if (!isAdmin && !getSetting("allow_user_invites")) {
 		return Response.json(

src/routes/api/invite/delete[invite].ts

@@ -21,7 +21,7 @@ async function handler(request: ExtendedRequest): Promise<Response> {
 		);
 	}
 
-	const isAdmin: boolean = request.session.roles.includes("admin");
+	const isAdmin: boolean = request.session.roles.includes("admin") || request.session.roles.includes("superadmin");
 	const { invite } = request.params as { invite: string };
 
 	if (!invite) {

src/routes/api/user/avatar/delete.ts

@@ -59,7 +59,7 @@ async function handler(request: ExtendedRequest): Promise<Response> {
 	}
 
 	const userID: UUID = (request.query.user as UUID) || request.session.id;
-	const isAdmin: boolean = request.session.roles.includes("admin");
+	const isAdmin: boolean = request.session.roles.includes("admin") || request.session.roles.includes("superadmin");
 
 	if (request.session.id !== userID && !isAdmin) {
 		return Response.json(