/**
 * Admin Guard - Only allows users with type === 1 (admin)
 */
import {
  Injectable,
  CanActivate,
  ExecutionContext,
  ForbiddenException,
} from '@nestjs/common';

@Injectable()
export class AdminGuard implements CanActivate {
  canActivate(context: ExecutionContext): boolean {
    const request = context.switchToHttp().getRequest();
    const user = request.user;
    if (!user || user.type !== 1) {
      throw new ForbiddenException('Admin access required');
    }
    return true;
  }
}