search

DeanRTaylor1 / Gerp

MIT License
2 stars 1 forks source link

[feature] protect edit/users/:userId #27

Open DeanRTaylor1 opened 9 months ago

DeanRTaylor1 commented 9 months ago

User Story

As an admin, I want to be able to update my users' profiles so that I can self manage my employees' information.

Acceptance Criteria

List the requirements that must be met for the feature to be considered complete.

  1. Front-End Implementation Steps

    • Step 1: allow admins to edit user information
    • Step 2: block editing if user is not an admin and they are not the owner of the profile

  2. Back-End Implementation Steps

    • Step 1: Add role based authentication to post requests