333332

src/middleware/auth.js

@@ -0,0 +1,22 @@
+// Authentication middleware
+function requireAuth(req, res, next) {
+    if (!req.session || !req.session.authenticated) {
+        return res.status(401).json({ error: 'Unauthorized' });
+    }
+    next();
+}
+
+// Role-based permissions
+function getRolePermissions(role) {
+    const permissions = {
+        admin: ['read', 'write', 'delete', 'admin'],
+        editor: ['read', 'write'],
+        viewer: ['read']
+    };
+    return permissions[role] || permissions.viewer;
+}
+
+module.exports = {
+    requireAuth,
+    getRolePermissions
+};