Better handling of permissions

backend/api/roles/add_permission.go

@@ -39,8 +39,9 @@ func HandleAddPermission(w http.ResponseWriter, r *http.Request) {
 	}
 
 	permissionRole := models.PermissionToRole{
-		PermissionID: permission.ID,
-		RoleID:       role.ID,
+		PermissionResource: permission.Resource,
+		PermissionAction:   permission.Action,
+		RoleID:             role.ID,
 	}
 	_, err = core.DB.NewInsert().Model(&permissionRole).Ignore().
 		Exec(ctx)

backend/api/roles/remove_permission.go

@@ -26,7 +26,7 @@ func HandleRemovePermission(w http.ResponseWriter, r *http.Request) {
 	}
 
 	_, err = core.DB.NewDelete().Model((*models.PermissionToRole)(nil)).
-		Where("permission_id = ? AND role_id = ?", permission.ID, role_id).
+		Where("resource = ? AND action = ? AND role_id = ?", permission.Resource, permission.Action, role_id).
 		Exec(ctx)
 
 	if err != nil {