A brave new world where admin users can use the server identity.

src/ssb.db.h

@@ -416,6 +416,15 @@ void tf_ssb_db_resolve_index_async(tf_ssb_t* ssb, const char* host, void (*callb
 */
 bool tf_ssb_db_verify(tf_ssb_t* ssb, const char* id);
 
+/**
+** Check if a user has a specific permission.
+** @param ssb The SSB instance.
+** @param id The user ID.
+** @param permission The name of the permission.
+** @return true If the user has the requested permission.
+*/
+bool tf_ssb_db_user_has_permission(tf_ssb_t* ssb, const char* id, const char* permission);
+
 /**
 ** An SQLite authorizer callback.  See https://www.sqlite.org/c3ref/set_authorizer.html for use.
 ** @param user_data User data registered with the authorizer.