From 2a74be262476b704dcd290fbe7cd1d5f1e958d60 Mon Sep 17 00:00:00 2001
From: Tetardtek <kvnn64@gmail.com>
Date: Sat, 14 Mar 2026 15:18:51 +0100
Subject: [PATCH] feat: GET /api/auth/me retourne roles[]

---
 backend/src/routes/auth.routes.ts | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/backend/src/routes/auth.routes.ts b/backend/src/routes/auth.routes.ts
index a708710..ede39d7 100644
--- a/backend/src/routes/auth.routes.ts
+++ b/backend/src/routes/auth.routes.ts
@@ -189,11 +189,17 @@ router.post("/logout", (_req: Request, res: Response): void => {
 
 /**
  * GET /api/auth/me
- * Retourne l'utilisateur courant (cookie ou Bearer).
+ * Retourne l'utilisateur courant (cookie ou Bearer) + ses rôles locaux.
  */
-router.get("/me", requireAuth, (req: Request, res: Response): void => {
+router.get("/me", requireAuth, async (req: Request, res: Response): Promise<void> => {
   const { user } = req as AuthenticatedRequest;
-  res.json({ success: true, data: { user } });
+
+  const localUser = await AppDataSource.getRepository(User)
+    .findOne({ where: { superOAuthId: user.id }, relations: ["userRoles", "userRoles.role"] });
+
+  const roles = localUser?.userRoles.map((ur) => ur.role.slug) ?? [];
+
+  res.json({ success: true, data: { user: { ...user, roles } } });
 });
 
 /**