fix permissions

backend/src/controllers/booking.controller.ts

@@ -226,8 +226,8 @@ class BookingController {
       const isOwner = booking.gebucht_von === req.user!.id;
       const groups: string[] = req.user?.groups ?? [];
       const isAdmin = groups.includes('dashboard_admin');
-      const canCancelOwn = isAdmin || permissionService.hasPermission(groups, 'kalender:cancel_own_bookings');
-      const canCancelAny = isAdmin || permissionService.hasPermission(groups, 'kalender:delete_bookings');
+      const canCancelOwn = isAdmin || permissionService.hasPermission(groups, 'kalender:manage_bookings');
+      const canCancelAny = isAdmin || permissionService.hasPermission(groups, 'kalender:manage_bookings');
 
       if (!(isOwner && canCancelOwn) && !canCancelAny) {
         res.status(403).json({ success: false, message: 'Keine Berechtigung' });