From 71d44f6c21beb62d5a234e2b66b00831bfc16799 Mon Sep 17 00:00:00 2001
From: BAaboe <benjamin.mjaatvedt@gmail.com>
Date: Wed, 23 Jul 2025 00:58:51 +0200
Subject: [PATCH 1/5] fix: Can not kick owner

---
 src/api/v1/members/uuid/mod.rs | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/api/v1/members/uuid/mod.rs b/src/api/v1/members/uuid/mod.rs
index 244f5f8..7f1709b 100644
--- a/src/api/v1/members/uuid/mod.rs
+++ b/src/api/v1/members/uuid/mod.rs
@@ -48,6 +48,10 @@ pub async fn delete(
 
     let member = Member::fetch_one_with_member(&app_state, &me, member_uuid).await?;
 
+    if member.is_owner {
+        return Error::Forbidden("Can not kick owner".to_string());
+    }
+
     let deleter = Member::check_membership(&mut conn, uuid, member.guild_uuid).await?;
 
     deleter

From 9e5d2daeab315e25a9860c4e7d80bd87c27b8dd8 Mon Sep 17 00:00:00 2001
From: BAaboe <benjamin.mjaatvedt@gmail.com>
Date: Wed, 23 Jul 2025 01:07:41 +0200
Subject: [PATCH 2/5] fix: fixed error error

---
 src/api/v1/members/uuid/mod.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/api/v1/members/uuid/mod.rs b/src/api/v1/members/uuid/mod.rs
index 7f1709b..580c586 100644
--- a/src/api/v1/members/uuid/mod.rs
+++ b/src/api/v1/members/uuid/mod.rs
@@ -49,7 +49,7 @@ pub async fn delete(
     let member = Member::fetch_one_with_member(&app_state, &me, member_uuid).await?;
 
     if member.is_owner {
-        return Error::Forbidden("Can not kick owner".to_string());
+        return Err(Error::Forbidden("Can not kick owner".to_string()));
     }
 
     let deleter = Member::check_membership(&mut conn, uuid, member.guild_uuid).await?;

From c725d13ca8500abf55ff2d27d89af7e4bb184431 Mon Sep 17 00:00:00 2001
From: BAaboe <benjamin.mjaatvedt@gmail.com>
Date: Wed, 23 Jul 2025 01:35:28 +0200
Subject: [PATCH 3/5] feat: kick permission

---
 src/api/v1/members/uuid/mod.rs | 2 +-
 src/objects/role.rs            | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/api/v1/members/uuid/mod.rs b/src/api/v1/members/uuid/mod.rs
index 580c586..0c697c2 100644
--- a/src/api/v1/members/uuid/mod.rs
+++ b/src/api/v1/members/uuid/mod.rs
@@ -55,7 +55,7 @@ pub async fn delete(
     let deleter = Member::check_membership(&mut conn, uuid, member.guild_uuid).await?;
 
     deleter
-        .check_permission(&app_state, Permissions::ManageMember)
+        .check_permission(&app_state, Permissions::KickMember)
         .await?;
 
     member.delete(&mut conn).await?;
diff --git a/src/objects/role.rs b/src/objects/role.rs
index ea70686..5a57e5c 100644
--- a/src/objects/role.rs
+++ b/src/objects/role.rs
@@ -176,6 +176,8 @@ pub enum Permissions {
     ManageGuild = 32,
     /// Lets users change member settings (nickname, etc)
     ManageMember = 64,
+    /// Lets users kick members
+    KickMember = 256,
 }
 
 impl Permissions {
@@ -188,6 +190,7 @@ impl Permissions {
             Self::ManageInvite,
             Self::ManageGuild,
             Self::ManageMember,
+            Self::KickMember,
         ];
 
         all_perms

From e074ca89f969c0eeead2f4acb9550947a4785d5c Mon Sep 17 00:00:00 2001
From: BAaboe <benjamin.mjaatvedt@gmail.com>
Date: Wed, 23 Jul 2025 01:50:55 +0200
Subject: [PATCH 4/5] feat: idiot proofing

---
 src/api/v1/members/uuid/mod.rs | 4 ----
 src/objects/member.rs          | 3 +++
 2 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/src/api/v1/members/uuid/mod.rs b/src/api/v1/members/uuid/mod.rs
index 0c697c2..734572e 100644
--- a/src/api/v1/members/uuid/mod.rs
+++ b/src/api/v1/members/uuid/mod.rs
@@ -48,10 +48,6 @@ pub async fn delete(
 
     let member = Member::fetch_one_with_member(&app_state, &me, member_uuid).await?;
 
-    if member.is_owner {
-        return Err(Error::Forbidden("Can not kick owner".to_string()));
-    }
-
     let deleter = Member::check_membership(&mut conn, uuid, member.guild_uuid).await?;
 
     deleter
diff --git a/src/objects/member.rs b/src/objects/member.rs
index 8678f4a..dbbeb9d 100644
--- a/src/objects/member.rs
+++ b/src/objects/member.rs
@@ -188,6 +188,9 @@ impl Member {
     }
 
     pub async fn delete(self, conn: &mut Conn) -> Result<(), Error> {
+        if member.is_owner {
+            return Err(Error::Forbidden("Can not kick owner".to_string()))
+        }
         delete(guild_members::table)
             .filter(guild_members::uuid.eq(self.uuid))
             .execute(conn)

From ac5ca90974ebe9e2c3ebfc5b3c481a7abdde2edc Mon Sep 17 00:00:00 2001
From: BAaboe <benjamin.mjaatvedt@gmail.com>
Date: Wed, 23 Jul 2025 02:03:06 +0200
Subject: [PATCH 5/5] fix: self not member

---
 src/objects/member.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/objects/member.rs b/src/objects/member.rs
index dbbeb9d..ae3b3ef 100644
--- a/src/objects/member.rs
+++ b/src/objects/member.rs
@@ -188,7 +188,7 @@ impl Member {
     }
 
     pub async fn delete(self, conn: &mut Conn) -> Result<(), Error> {
-        if member.is_owner {
+        if self.is_owner {
             return Err(Error::Forbidden("Can not kick owner".to_string()))
         }
         delete(guild_members::table)