Update frontend login page.jsx และ backend

backend/src/routes/permissions.js

@@ -1,14 +1,25 @@
-import { Router } from 'express';
-import sql from '../db/index.js';
-import { requirePerm } from '../middleware/requirePerm.js';
-import PERM from '../config/permissions.js';
+// FILE: src/routes/permissions.js
+// 03.2 12) เพิ่ม routes/permissions.js (ใหม่)
+// - ใช้ร่วมกับ requirePerm()
+// - สำหรับดูรายชื่อสิทธิ์ทั้งหมด
+// Permissions route
+// - GET /api/permissions to list all permissions (permission_id, permission_code, description)
+// - Requires global permission.read permission via requirePerm middleware
+
+import { Router } from "express";
+import sql from "../db/index.js";
+import { requirePerm } from "../middleware/requirePerm.js";
+import PERM from "../config/permissions.js";
 
 const r = Router();
 
-r.get('/',
-  requirePerm('permission.read', { scope: 'global' }),
+r.get(
+  "/",
+  requirePerm("permission.read", { scope: "global" }),
   async (req, res) => {
-    const [rows] = await sql.query('SELECT permission_id, permission_code, description FROM permissions ORDER BY permission_code');
+    const [rows] = await sql.query(
+      "SELECT permission_id, permission_code, description FROM permissions ORDER BY permission_code"
+    );
     res.json(rows);
   }
 );