feat: implement user routes with authentication and role-based access control

2026-05-17 23:39:53 +07:00
parent 374c3b4f47
commit fc7320cda1
1 changed files with 6 additions and 6 deletions
--- a/internal/routes/userRoute.go
+++ b/internal/routes/userRoute.go
@@ -58,14 +58,14 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo
 	route.Delete(
 		"/:id",
 		middlewares.JwtAccess(userRepo),
-		middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod),
+		middlewares.RequireAnyRole(constants.RoleTypeAdmin),
 		controller.DeleteUser,
 	)
 	route.Put(
 		"/:id",
 		middlewares.JwtAccess(userRepo),
-		middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod),
+		middlewares.RequireAnyRole(constants.RoleTypeAdmin),
 		controller.AdminUpdateProfile,
 	)
@@ -93,14 +93,14 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo
 	route.Patch(
 		"/:id/restore",
 		middlewares.JwtAccess(userRepo),
-		middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod),
+		middlewares.RequireAnyRole(constants.RoleTypeAdmin),
 		controller.RestoreUser,
 	)
 	route.Patch(
 		"/:id/password",
 		middlewares.JwtAccess(userRepo),
-		middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod),
+		middlewares.RequireAnyRole(constants.RoleTypeAdmin),
 		controller.AdminResetPassword,
 	)
@@ -121,7 +121,7 @@ func UserRoutes(app *fiber.App, controller *controllers.UserController, userRepo
 	route.Post(
 		"/",
 		middlewares.JwtAccess(userRepo),
-		middlewares.RequireAnyRole(constants.RoleTypeAdmin, constants.RoleTypeMod),
+		middlewares.RequireAnyRole(constants.RoleTypeAdmin),
 		controller.CreateUser,
 	)