This repository has been archived on 2026-05-24. You can view files and clone it. You cannot open issues or pull requests or push a commit.
groombook-ci[bot]
1c82a75a88
feat(gro-203): add requireSuperUser() middleware + route guards
- Added requireSuperUser() middleware in apps/api/src/middleware/rbac.ts
that checks staff.isSuperUser, returns 403 if false
- Wired into index.ts:
- POST/PATCH/DELETE /api/staff/* → requireSuperUser() after requireRole("manager")
- /api/admin/settings/* → requireSuperUser() after requireRole("manager")
- resolveStaffMiddleware: inject isSuperUser: true for AUTH_DISABLED dev mode
Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-03-29 03:16:24 +00:00
..
2026-03-29 03:16:24 +00:00
2026-03-28 20:39:46 +00:00