From fc7320cda1469bcbf1bdc061a2b7cc79e12533b3 Mon Sep 17 00:00:00 2001 From: AzenKain Date: Sun, 17 May 2026 23:39:53 +0700 Subject: [PATCH] feat: implement user routes with authentication and role-based access control --- internal/routes/userRoute.go | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/internal/routes/userRoute.go b/internal/routes/userRoute.go index ec5132d..668e1f3 100644 --- a/internal/routes/userRoute.go +++ b/internal/routes/userRoute.go @@ -58,14 +58,14 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo route.Delete( "/:id", middlewares.JwtAccess(userRepo), - middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod), + middlewares.RequireAnyRole(constants.RoleTypeAdmin), controller.DeleteUser, ) - + route.Put( "/:id", middlewares.JwtAccess(userRepo), - middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod), + middlewares.RequireAnyRole(constants.RoleTypeAdmin), controller.AdminUpdateProfile, ) @@ -93,14 +93,14 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo route.Patch( "/:id/restore", middlewares.JwtAccess(userRepo), - middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod), + middlewares.RequireAnyRole(constants.RoleTypeAdmin), controller.RestoreUser, ) route.Patch( "/:id/password", middlewares.JwtAccess(userRepo), - middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod), + middlewares.RequireAnyRole(constants.RoleTypeAdmin), controller.AdminResetPassword, ) @@ -121,7 +121,7 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo route.Post( "/", middlewares.JwtAccess(userRepo), - middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod), + middlewares.RequireAnyRole(constants.RoleTypeAdmin), controller.CreateUser, )