read-only should work now

src/clj/auto_ap/routes/auth.clj

@@ -49,18 +49,17 @@
                       :db/id (:db/id user)
                       :user/role    (name (:user/role user))
                       :user/name    (:user/name user)}
-                (#{"admin" "read-only"} (name (:user/role user)))
+               (#{"admin" "read-only"} (name (:user/role user)))
                (assoc :gz-clients (->> (:user/clients user)
                                        (map (fn [c]
                                               (select-keys c [:client/code :db/id :client/locations])))
 
                                        gzip))
-                (not= "admin" (name (:user/role user)))
+               (not (#{"read-only" "admin"} (name (:user/role user))))
                (assoc :user/clients
                       (->> (:user/clients user)
                            (map (fn [c]
                                   (select-keys c [:client/code :db/id :client/locations]))))))]
-
     (when (and user oauth-token)
       auth)))
 

src/clj/auto_ap/ssr/admin/transaction_rules.fiddle

@@ -0,0 +1 @@
+(user/start-db)