Update permission accès

src/main/java/fr/eni/enchere/security/WebSecurityConfig.java

@@ -16,8 +16,8 @@ public class WebSecurityConfig {
         http.authorizeHttpRequests((requests) -> requests.requestMatchers("/", "/accueil").permitAll()
                         .requestMatchers("/accueil", "/login", "/inscription", "/searchArticle").permitAll()
                         .requestMatchers("/css/**", "/images/**", "/assets/**", "/img/**", "/js/**").permitAll()
-                        .requestMatchers("/profile").hasRole("MEMBRE")
-                        .requestMatchers("/admin").hasAnyRole("MEMBRE", "ADMIN")
+                        .requestMatchers("/profile").hasAnyRole("MEMBRE", "ADMIN")
+                        .requestMatchers("/admin").hasRole("MEMBRE")
                         .anyRequest().authenticated())
                 .formLogin((form) -> form.loginPage("/login").defaultSuccessUrl("/", true))
                 .logout((logout) -> logout.clearAuthentication(true).invalidateHttpSession(true)