From 6cefee3d4236b9bf8f6b7756ad536c2d62c48c08 Mon Sep 17 00:00:00 2001
From: Hamza-Ayed <hamzaayedflutter@gmail.com>
Date: Thu, 7 May 2026 03:12:04 +0300
Subject: [PATCH] Update: 2026-05-07 03:12:04

---
 app/modules_app/payments/create.php           | 4 ++--
 app/modules_app/payments/verify_reference.php | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/modules_app/payments/create.php b/app/modules_app/payments/create.php
index e5f576c..ea0bc73 100644
--- a/app/modules_app/payments/create.php
+++ b/app/modules_app/payments/create.php
@@ -16,8 +16,8 @@ use App\Middleware\AuthMiddleware;
 
 $decoded = AuthMiddleware::check();
 
-// Only admin or accountant can create payment requests
-if (!in_array($decoded['role'], ['admin', 'accountant'])) {
+// Only admin, accountant or super_admin can create payment requests
+if (!in_array($decoded['role'], ['admin', 'accountant', 'super_admin'])) {
     json_error('غير مصرح لك بإنشاء طلب دفع.', 403);
 }
 
diff --git a/app/modules_app/payments/verify_reference.php b/app/modules_app/payments/verify_reference.php
index 8dfdd60..10be652 100644
--- a/app/modules_app/payments/verify_reference.php
+++ b/app/modules_app/payments/verify_reference.php
@@ -17,7 +17,7 @@ use App\Middleware\AuthMiddleware;
 
 $decoded = AuthMiddleware::check();
 
-if (!in_array($decoded['role'], ['admin', 'accountant'])) {
+if (!in_array($decoded['role'], ['admin', 'accountant', 'super_admin'])) {
     json_error('غير مصرح لك بتأكيد الدفع.', 403);
 }