fix: [UIE-9495, UIE-9595] - Permissions fixes for admin users on users pages

[abailly-akamai]

Description 📝

This PR fixes a couple permission issues on the IAM user screens.

Despite being an account admin, a admin user isn't getting the delete_user & update_user permissions. Those roles are exclusive to being an admin, so is_account_admin (aka unrestricted user) really is the only thing we need to check here (restricted users can't access those screens and don't get any users returned) but I kept the permission checks since we don't want any surprises shall anything change on the API side without our knowledge).

This regression happened as a result of https://github.com/linode/manager/pull/13033/files which actually improves the account permission checks.

Changes 🔄

• fix permissions on user screens
• ...

Scope 🚢

Upon production release, changes in this PR will be visible to:

• All customers
• Some customers (e.g. in Beta or Limited Availability)
• No customers / Not applicable

Target release date 🗓️

11/14/2025

How to test 🧪

Prerequisites

Have an IAM admin account

Reproduction steps

With an unrestricted IAM account

• Navigate to /iam/users
  • 🚫 can't delete other users
• Navigate to /iam/users/{username}/details
  • 🚫 can't update user (self or others)

Verification steps

• Navigate to /iam/users
  • ✅ can delete other users
• Navigate to /iam/users/{username}/details
  • ✅ can update user (self or others)

Author Checklists

As an Author, to speed up the review process, I considered 🤔

👀 Doing a self review
❔ Our contribution guidelines
🤏 Splitting feature into small PRs
➕ Adding a changeset
🧪 Providing/improving test coverage
🔐 Removing all sensitive information from the code and PR description
🚩 Using a feature flag to protect the release
👣 Providing comprehensive reproduction steps
📑 Providing or updating our documentation
🕛 Scheduling a pair reviewing session
📱 Providing mobile support
♿ Providing accessibility support

• I have read and considered all applicable items listed above.

As an Author, before moving this PR from Draft to Open, I confirmed ✅

• All tests and CI checks are passing
• TypeScript compilation succeeded without errors
• Code passes all linting rules

[aaleksee-akamai]

Confirm that account_admin can delete users and update username and email

[linode-gh-bot]

Cloud Manager UI test results

🔺 5 failing tests on test run #4 ↗︎

❌ Failing	✅ Passing	↪️ Skipped	🕐 Duration
5 Failing	854 Passing	13 Skipped	42m 12s

Details

Failing Tests
	Spec	Test
❌	create-firewall.spec.ts	Cloud Manager Cypress Tests→create firewall » "before all" hook for "creates a firewall without a linode"
❌	create-firewall.spec.ts	Cloud Manager Cypress Tests→restricted user cannot create firewall » "before each" hook for "confirms the create button is disabled on the Firewall Landing page"
❌	update-stackscripts.spec.ts	Cloud Manager Cypress Tests→Update stackscripts » updates a StackScript
❌	vpc-details-page.spec.ts	Cloud Manager Cypress Tests→VPC details page » can create, edit, and delete a subnet from the VPC details page
❌	create-stackscripts.spec.ts	Cloud Manager Cypress Tests→Create stackscripts » creates a StackScript and deploys a Linode with it

Troubleshooting

Use this command to re-run the failing tests:

pnpm cy:run -s "cypress/e2e/core/firewalls/create-firewall.spec.ts,cypress/e2e/core/stackscripts/update-stackscripts.spec.ts,cypress/e2e/core/vpc/vpc-details-page.spec.ts,cypress/e2e/core/stackscripts/create-stackscripts.spec.ts"