We need to take the auth and add it to creating an event.
the route POST /events needs to opt in to auth so user context can be used
the route GET /events needs to opt in to auth so user context can be used
the event controllers GetEvents and CreateEvent need to be updated to use user context as well as all functions below
when request is made and a user does not have access to an event, respond with 404 since we don't want to use a 403 that will alert someone that that id does indeed exist
in order to support the user context, we need to have a SQL table EventAdmins with the data
event_admin_id
fk_user_id - foreign key of the user this admin record relates to
fk_event_id - foreign key of the event this admin record relates to
We need to take the auth and add it to creating an event.
POST /events
needs to opt in to auth so user context can be usedGET /events
needs to opt in to auth so user context can be usedGetEvents
andCreateEvent
need to be updated to use user context as well as all functions below404
since we don't want to use a403
that will alert someone that that id does indeed existEventAdmins
with the dataevent_admin_id
fk_user_id
- foreign key of the user this admin record relates tofk_event_id
- foreign key of the event this admin record relates tocreated_at
updated_at