🔒 Security Updates

• Role-Based Access Control: Added role validation middleware to delete-announcement and delete-promocode API endpoints to restrict access to owners and managers only
• Enhanced Authorization: Implemented stricter permission checks preventing unauthorized users from deleting critical content

🔧 Improvements

• API Security: Strengthened endpoint protection with proper role verification before processing deletion requests
• Access Management: Improved admin-level operations security by enforcing appropriate user privilege requirements

🐛 Bug Fixes

• Unauthorized Access: Resolved potential security vulnerability where non-privileged users could potentially access deletion endpoints
• Permission Validation: Fixed missing authorization checks in announcement and promo code management workflows

Questions about these updates? Contact our support team at support@pophopmail.us