Starting to implement permissions into frontend

backend/api/events_routes.go

@@ -19,6 +19,9 @@ var EventsRoutes = map[string]core.Handler{
 		Handler:     events.HandleDelete,
 		Middlewares: []core.Middleware{Methods("DELETE"), AuthJWT}},
 	"/events/{event_uuid}/update": {
-		Handler:     events.HandleUpdate,
-		Middlewares: []core.Middleware{Methods("PATCH"), AuthJWT}},
+		Handler: events.HandleUpdate,
+		Middlewares: []core.Middleware{
+			Methods("PATCH"),
+			HasPermissions("events", "update"),
+			AuthJWT}},
 }