From ab6064eff18b1f1647c39c8f4775ead26aea5d8b Mon Sep 17 00:00:00 2001
From: zhangzhanwei <zhanwei.zhang@fit2cloud.com>
Date: Tue, 30 Dec 2025 11:54:02 +0800
Subject: [PATCH] fix: The user folder granted to the regular user role has
 role-based permissions, and regular users cannot view this folder.

---
 apps/folders/serializers/folder.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/apps/folders/serializers/folder.py b/apps/folders/serializers/folder.py
index 93e748f1c..3b8f66591 100644
--- a/apps/folders/serializers/folder.py
+++ b/apps/folders/serializers/folder.py
@@ -308,9 +308,10 @@ class FolderTreeSerializer(serializers.Serializer):
         is_x_pack_ee = workspace_user_role_mapping_model is not None and role_permission_mapping_model is not None
         if is_x_pack_ee:
             return QuerySet(workspace_user_role_mapping_model).select_related('role', 'user').filter(
-                workspace_id=workspace_id, user_id=user_id,
+                Q(role__rolepermission__permission_id=f"{source}_FOLDER:READ") | Q(role__internal=True),
+                workspace_id=workspace_id,
+                user_id=user_id,
                 role__type=RoleConstants.USER.value.__str__(),
-                role__rolepermission__permission_id=f"{source}_FOLDER:READ"
             ).exists()
 
         return False