Implement Role-Based Access Control (RBAC) #25
Description
Description:
Create role guards and decorators for admin, creator, and donor access control.
Tasks:
- Create
RolesGuard - Create
@Roles()decorator - Define role enum:
ADMIN,CREATOR,DONOR - Implement role checking logic
- Combine with JWT guard
- Add role validation in user context
Acceptance Criteria:
- Routes can be restricted by role
- Multiple roles can be specified
- Returns 403 for unauthorized roles
- Works seamlessly with JWT guard