From 7b89f8a8c2d552c1e76bd2c7675a46b593846c28 Mon Sep 17 00:00:00 2001
From: irfanamal <irfan.ihsanulamal@yahoo.com>
Date: Fri, 29 Mar 2019 19:34:08 +0700
Subject: [PATCH] Add middleware

---
 backend/src/router/router.js | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/backend/src/router/router.js b/backend/src/router/router.js
index 8e34a91..5cf6286 100644
--- a/backend/src/router/router.js
+++ b/backend/src/router/router.js
@@ -11,11 +11,11 @@ module.exports = function(app) {
     app.get('/api/test/admin', [authJwt.verifyToken, authJwt.isAdmin], testController.adminContent);
     app.get('/api/test/member', [authJwt.verifyToken], testController.memberContent);
 
-    app.get('/api/user/all', userController.fetchAll);
-    app.post('/api/user/create', userController.createUser);
-    app.post('/api/user/edit', userController.editUser);
-    app.post('/api/user/delete', userController.deleteUser);
-    app.post('/api/user/detail', userController.viewDetail);
+    app.get('/api/user/all', [authJwt.verifyToken, authJwt.isAdmin], userController.fetchAll);
+    app.post('/api/user/create', [authJwt.verifyToken, authJwt.isAdmin], userController.createUser);
+    app.post('/api/user/edit', [authJwt.verifyToken, authJwt.isAdmin], userController.editUser);
+    app.post('/api/user/delete', [authJwt.verifyToken, authJwt.isAdmin], userController.deleteUser);
+    app.post('/api/user/detail', [authJwt.verifyToken, authJwt.isAdmin], userController.viewDetail);
     // Sample Hello
     var hello = require('../controller/hello')
     app.route('/hello').get(hello.index)
-- 
GitLab