Allow non admin users to bulk upload

Author: callmekatootie

src/consts.js

@@ -6,13 +6,20 @@ const UserRoles = {
   admin: 'Admin',
   administrator: 'Administrator',
   topcoderUser: 'Topcoder User',
-  copilot: 'Copilot'
+  copilot: 'Copilot',
+  ubahn: 'u-bahn'
 }
 /**
  * all authenticated users.
  * @type {(string)[]}
  */
-const AllAuthenticatedUsers = [UserRoles.admin, UserRoles.administrator, UserRoles.topcoderUser, UserRoles.copilot]
+const AllAuthenticatedUsers = [
+  UserRoles.admin,
+  UserRoles.administrator,
+  UserRoles.topcoderUser,
+  UserRoles.copilot,
+  UserRoles.ubahn
+]
 
 /**
  * all admin user

src/routes.js

@@ -27,7 +27,7 @@ module.exports = {
       method: 'uploadEntity',
       upload: fileUpload.single('upload'),
       auth: 'jwt',
-      access: constants.AllAuthenticatedUsers,
+      access: constants.AdminUser,
       scopes: [constants.Scopes.CreateUpload, constants.Scopes.AllUpload]
     }
   },
@@ -36,14 +36,14 @@ module.exports = {
       controller: 'UploadController',
       method: 'getEntity',
       auth: 'jwt',
-      access: constants.AllAuthenticatedUsers,
+      access: constants.AdminUser,
       scopes: [constants.Scopes.GetUpload, constants.Scopes.AllUpload]
     },
     patch: {
       controller: 'UploadController',
       method: 'partiallyUpdate',
       auth: 'jwt',
-      access: constants.AllAuthenticatedUsers,
+      access: constants.AdminUser,
       scopes: [constants.Scopes.UpdateUpload, constants.Scopes.AllUpload]
     }
   },
@@ -62,7 +62,7 @@ module.exports = {
       controller: 'TemplateController',
       method: 'getEntity',
       auth: 'jwt',
-      access: constants.AllAuthenticatedUsers,
+      access: constants.AdminUser,
       scopes: [constants.Scopes.GetTemplate, constants.Scopes.AllTemplate]
     }
   },