Add multiple conferences feature

author: Leonardo Bishop <me@leonardobishop.com> 2025-08-23 22:29:28 +0100
committer: Leonardo Bishop <me@leonardobishop.com> 2025-08-23 22:29:28 +0100
commit: ecc6a55aba7bb35fc778e7a53848396b88214151 (patch)
tree: 1b37a2dc5f4594155114da1ae0c4529d20a4c548 /api/middleware/admin.go
parent: 8f7dec8ba6b2f9bde01afd0a110596ebbd43e0ed (diff)
1 files changed, 27 insertions, 0 deletions
diff --git a/api/middleware/admin.go b/api/middleware/admin.go
new file mode 100644
index 0000000..fd43cd6
--- /dev/null
+++ b/api/middleware/admin.go
@@ -0,0 +1,27 @@
+package middleware
+
+import (
+	"net/http"
+
+	"github.com/LMBishop/confplanner/api/dto"
+	"github.com/LMBishop/confplanner/pkg/session"
+	"github.com/LMBishop/confplanner/pkg/user"
+)
+
+func MustAuthoriseAdmin(service user.Service, store session.Service) func(http.HandlerFunc) http.HandlerFunc {
+	return func(next http.HandlerFunc) http.HandlerFunc {
+		return func(w http.ResponseWriter, r *http.Request) {
+			session := r.Context().Value("session").(*session.UserSession)
+
+			if !session.Admin {
+				dto.WriteDto(w, r, &dto.ErrorResponse{
+					Code:    http.StatusForbidden,
+					Message: "Forbidden",
+				})
+				return
+			}
+
+			next(w, r)
+		}
+	}
+}
author	Leonardo Bishop <me@leonardobishop.com>	2025-08-23 22:29:28 +0100
committer	Leonardo Bishop <me@leonardobishop.com>	2025-08-23 22:29:28 +0100
commit	ecc6a55aba7bb35fc778e7a53848396b88214151 (patch)
tree	1b37a2dc5f4594155114da1ae0c4529d20a4c548 /api/middleware/admin.go
parent	8f7dec8ba6b2f9bde01afd0a110596ebbd43e0ed (diff)