From 3fb31fd0406ac2ea32bd3b0fc8832ca14cd8981a Mon Sep 17 00:00:00 2001
From: Jared <TheWolfBadger@gmail.com>
Date: Thu, 5 Feb 2026 10:31:21 -0500
Subject: [PATCH] Add permission guard and only allow provider admin to visit
 billing page for provider portal users (#18639)

---
 .../app/admin-console/providers/providers-routing.module.ts   | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
index 79de741b67a..447481a8bcb 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
@@ -123,7 +123,9 @@ const routes: Routes = [
           },
           {
             path: "billing",
-            canActivate: [providerPermissionsGuard()],
+            canActivate: [
+              providerPermissionsGuard((provider: Provider) => provider.isProviderAdmin),
+            ],
             children: [
               {
                 path: "",