import BaseMiddleware from './BaseMiddleware.js';
export default class CoarseAuthMiddleware extends BaseMiddleware {
  constructor(roles=[]){ super(); this.roles=roles; }
  middleware(){
    return (req,res,next)=>{
      if(!this.roles.includes(req.user?.role))
        return res.status(403).json({ error:'FORBIDDEN' });
      next();
    };
  }
}