Update: Allow superadmin role to manage trips alongside admin

src/pages/bookings/trip-details.php

@@ -263,7 +263,7 @@ include_once(dirname(dirname(dirname(__DIR__))) . '/header.php');
                 <!-- Admin Publish/Unpublish Button -->
                 <?php 
                 $user_role = $_SESSION['role'] ?? 'user';
-                if ($user_role === 'admin'):
+                if (in_array($user_role, ['admin', 'superadmin'])):
                     // Fetch current published status
                     $status_stmt = $conn->prepare("SELECT published FROM trips WHERE trip_id = ?");
                     $status_stmt->bind_param("i", $trip_id);

src/processors/delete_trip.php

@@ -8,7 +8,7 @@ require_once($rootPath . '/src/config/connection.php');
 
 // Check admin status
 session_start();
-if (empty($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
+if (empty($_SESSION['user_id']) || !in_array($_SESSION['role'] ?? '', ['admin', 'superadmin'])) {
     ob_end_clean();
     echo json_encode(['status' => 'error', 'message' => 'Unauthorized access']);
     exit;

src/processors/process_trip.php

@@ -8,7 +8,7 @@ require_once($rootPath . '/src/config/connection.php');
 
 // Check admin status
 session_start();
-if (empty($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
+if (empty($_SESSION['user_id']) || !in_array($_SESSION['role'] ?? '', ['admin', 'superadmin'])) {
     ob_end_clean();
     echo json_encode(['status' => 'error', 'message' => 'Unauthorized access']);
     exit;

src/processors/toggle_trip_published.php

@@ -8,7 +8,7 @@ require_once($rootPath . '/src/config/connection.php');
 
 // Check admin status
 session_start();
-if (empty($_SESSION['user_id']) || $_SESSION['role'] !== 'admin') {
+if (empty($_SESSION['user_id']) || !in_array($_SESSION['role'] ?? '', ['admin', 'superadmin'])) {
     ob_end_clean();
     echo json_encode(['status' => 'error', 'message' => 'Unauthorized access']);
     exit;