helpyourneighbour/ISSUE-12.md

# Issue #12: Implement Role-Based Access Control (RBAC) for Dispute Endpoints

## Description
Implement role-based access control for dispute-related endpoints to ensure that only users with the appropriate roles (`user`, `moderator`, or `admin`) can access specific dispute functionalities.

## Acceptance Criteria
- [x] Middleware `requireRole` is implemented and tested
- [x] Dispute endpoints are secured with appropriate role requirements
- [x] Integration tests verify role-based access control
- [x] Documentation of roles and permissions is updated

## Related Files
- `backend/src/middleware/requireRole.js`
- `backend/src/middleware/requireRole.test.js`
- `backend/src/dispute-flow/`

## Notes
This issue builds upon the existing roles and permissions documentation to ensure that dispute-related endpoints are properly secured.