const checkAdminRole = (req, res, next) => {
  const roles = req.user['https://container-mom.com/roles'] || [];
  if (!roles.includes('admin')) {
    return res.status(403).json({ 
      error: 'Forbidden',
      details: 'Admin access required'
    });
  }
  next();
};

module.exports = { checkAdminRole };