From 4736a60c47089db8ec65e99a6a81ae995ef8fa10 Mon Sep 17 00:00:00 2001
From: Danny Avila <danny@librechat.ai>
Date: Sun, 3 Aug 2025 23:45:35 -0400
Subject: [PATCH] chore: Update people picker access middleware to use
 PrincipalType constants

---
 api/server/middleware/checkPeoplePickerAccess.js | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/api/server/middleware/checkPeoplePickerAccess.js b/api/server/middleware/checkPeoplePickerAccess.js
index b2931608ff..9ed8e2939a 100644
--- a/api/server/middleware/checkPeoplePickerAccess.js
+++ b/api/server/middleware/checkPeoplePickerAccess.js
@@ -1,4 +1,4 @@
-const { PermissionTypes, Permissions } = require('librechat-data-provider');
+const { PrincipalType, PermissionTypes, Permissions } = require('librechat-data-provider');
 const { getRoleByName } = require('~/models/Role');
 const { logger } = require('~/config');
 
@@ -32,14 +32,14 @@ const checkPeoplePickerAccess = async (req, res, next) => {
     const canViewUsers = peoplePickerPerms[Permissions.VIEW_USERS] === true;
     const canViewGroups = peoplePickerPerms[Permissions.VIEW_GROUPS] === true;
 
-    if (type === 'user') {
+    if (type === PrincipalType.USER) {
       if (!canViewUsers) {
         return res.status(403).json({
           error: 'Forbidden',
           message: 'Insufficient permissions to search for users',
         });
       }
-    } else if (type === 'group') {
+    } else if (type === PrincipalType.GROUP) {
       if (!canViewGroups) {
         return res.status(403).json({
           error: 'Forbidden',