From 663a070ab93a3b8a2b86e62174661a44b29024e8 Mon Sep 17 00:00:00 2001
From: dvdrw <admin@dvdrw.dev>
Date: Tue, 12 May 2026 15:11:57 +0200
Subject: [PATCH] fix: include username, is_admin in generated JWT tokens

---
 lib/localiser/web/controllers/session_controller.ex | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/localiser/web/controllers/session_controller.ex b/lib/localiser/web/controllers/session_controller.ex
index 0229d21..c9c6d47 100644
--- a/lib/localiser/web/controllers/session_controller.ex
+++ b/lib/localiser/web/controllers/session_controller.ex
@@ -25,7 +25,7 @@ defmodule Localiser.Web.Controllers.SessionController do
   def create(conn, %{"username" => username, "password" => password}) do
     case Users.authenticate_user(username, password) do
       {:ok, user} ->
-        token = Token.generate(%{"sub" => user.id})
+        token = Token.generate(%{"sub" => user.id, "username" => user.username, "is_admin" => user.is_admin})
         json(conn, %{token: token, user: render_user(user)})
 
       {:error, :invalid_credentials} ->