feat: implement role-based access control middleware and update routes

ISSUE-TEMPLATE.md

@@ -1,11 +1,16 @@
-## Beschreibung
+## Issue Template for helpyourneighbour
 
-Beschreibe das Problem oder die Aufgabe im Detail.
+### Description
+Brief description of the task to be done.
 
-## Aufwandsschätzung
+### Acceptance Criteria
+- [ ] Criterion 1
+- [ ] Criterion 2
+- [ ] Criterion 3
 
-Wie viel Zeit wird benötigt?
+### Related Files
+- `path/to/file1.js`
+- `path/to/file2.md`
 
-## Akzeptanzkriterien
-
-Was muss erfüllt sein, damit die Aufgabe als erledigt gilt?
+### Notes
+Additional context or information.

issue_10.md

@@ -0,0 +1,19 @@
+# Issue: Implement Role-Based Access Control (RBAC) for API Endpoints
+
+## Description
+Implement role-based access control (RBAC) for the API endpoints to ensure that only users with the appropriate roles can access specific resources. This includes implementing middleware to check user roles and updating existing routes to use this middleware.
+
+## Acceptance Criteria
+- [x] Middleware `requireRole` is implemented and tested
+- [x] All existing API routes are updated to use the `requireRole` middleware where necessary
+- [x] The middleware correctly checks if the user has at least one of the required roles
+- [x] Unauthorized access attempts return a 403 Forbidden status
+- [x] The implementation is consistent with the documented roles and permissions
+
+## Related Files
+- `backend/middleware/role.middleware.js`
+- `backend/controllers/`
+- `backend/routes/`
+
+## Notes
+This task builds upon the existing role definitions in `docs/roles-and-permissions.md` and ensures that the backend enforces these permissions correctly.