Allow parent admins to affiliate children
To test: > bundle exec rails db:reset
then POST /spaces/1/affiliated/users/2
. You will get unauthorized. Sign-in with the User 1 credentials and revisit. You will get a 404 not found. User 2 does not exist. Create user 2: > FactoryBot.create(:user)
. Visit again and you'll get a success. Remove the admin role from user 1: > User.first.remove_role(:admin, Space.first)
and revisit. You will get forbidden.