Add bypassPermissions mode as developer setting

[sugyan]

Summary

Add bypassPermissions as a developer setting that can be enabled in the unified settings interface, allowing advanced users to bypass Claude's permission system when needed.

Background

Currently, the application supports three permission modes:

• default: Standard permission handling
• plan: Claude presents execution plans for user approval
• acceptEdits: Automatically accepts edits with user review

This enhancement adds a fourth mode bypassPermissions for developer/advanced use cases where users want to bypass the permission system entirely.

Proposed Implementation

Permission Mode Extension

• Extend PermissionMode type to include "bypassPermissions"
• Update shared/types.ts and frontend/src/types.ts accordingly
• Ensure SDK compatibility with existing bypassPermissions mode

Developer Settings Section

• Add "Developer" section to unified settings page (requires Add unified settings page with theme and enter behavior integration #250)
• Include toggle for "Enable bypassPermissions mode" with warning
• Show clear warning about security implications when enabled

Query Parameter Support

• Support ?bypassPermissions=true URL parameter for temporary activation
• Query parameter should override localStorage setting
• Useful for development and testing scenarios

UI Integration

• Add bypassPermissions to permission mode cycle when enabled in settings
• Visual distinction (warning color/icon) when bypassPermissions is active
• Clear indication that permission system is bypassed

Security Considerations

• Hide bypassPermissions option by default (only show when explicitly enabled)
• Display prominent warning about security implications
• Consider session-only activation vs persistent localStorage setting

Technical Details

Type Updates

// shared/types.ts
export interface ChatRequest {
  // existing fields...
  permissionMode?: "default" | "plan" | "acceptEdits" | "bypassPermissions";
}

// frontend/src/types.ts  
export type PermissionMode = "default" | "plan" | "acceptEdits" | "bypassPermissions";

Settings Integration

interface AppSettings {
  // existing settings...
  developer: {
    enableBypassPermissions: boolean;
  };
}

Acceptance Criteria

• bypassPermissions added to PermissionMode type definitions
• Developer settings section in unified settings page
• Toggle to enable/disable bypassPermissions mode availability
• Query parameter ?bypassPermissions=true temporarily enables the mode
• bypassPermissions appears in permission mode cycle when enabled
• Visual warning when bypassPermissions mode is active
• Clear security warnings in settings UI
• Backend correctly handles bypassPermissions mode
• Settings persisted in localStorage with proper migration

Dependencies

• Requires: Add unified settings page with theme and enter behavior integration #250 (unified settings page) to be completed first
• Blocks: Can be implemented independently after settings infrastructure exists

Security Notes

This feature is intended for:

• Development and testing environments
• Advanced users who understand the security implications
• Debugging permission-related issues

Users should be clearly warned about the security implications of bypassing the permission system.

🤖 Generated with Claude Code

[xiaofeng-va]

This is so important, would like to know whether there is any plan for the feature?

[q35123753]

这个现在支持了吗