11 lines
349 B
JavaScript
11 lines
349 B
JavaScript
import BaseMiddleware from './BaseMiddleware.js';
|
|
export default class CoarseAuthMiddleware extends BaseMiddleware {
|
|
constructor(roles=[]){ super(); this.roles=roles; }
|
|
middleware(){
|
|
return (req,res,next)=>{
|
|
if(!this.roles.includes(req.user?.role))
|
|
return res.status(403).json({ error:'FORBIDDEN' });
|
|
next();
|
|
};
|
|
}
|
|
} |