Fix jwt-token

server/middleware/rbac.js

@@ -115,10 +115,17 @@ const ROLES = {
  * @returns {boolean} - True if user has permission
  */
 const hasPermission = (userRole, permission) => {
-  if (!userRole || !ROLES[userRole]) {
+  if (!userRole) {
     return false;
   }
-  return ROLES[userRole].includes(permission);
+  
+  // Handle case-insensitive role lookup
+  const normalizedRole = userRole.toLowerCase();
+  if (!ROLES[normalizedRole]) {
+    return false;
+  }
+  
+  return ROLES[normalizedRole].includes(permission);
 };
 
 /**
@@ -330,6 +337,7 @@ module.exports = {
   getPermissions,
   getRoles,
   requirePermission,
+  requirePermission,
   requirePermissions,
   requireAnyPermission
 };