correct role logic

src/Controller/UserController.php

@@ -678,15 +678,15 @@ class UserController extends AbstractController
     #[Route(path: '/organization/resend-invitation/{userId}', name: 'resend_invitation', methods: ['POST'])]
     public function resendInvitation(int $userId, Request $request): JsonResponse
     {
-        $this->denyAccessUnlessGranted("ROLE_ADMIN");
+        $this->denyAccessUnlessGranted("ROLE_USER");
         $actingUser = $this->getUser();
-        if ($this->userService->hasAccessTo($actingUser, true)) {
-            $orgId = $request->get('organizationId');
+        $orgId = $request->request->get('organizationId');
         $org = $this->organizationRepository->find($orgId);
         if (!$org) {
             $this->loggerService->logEntityNotFound('Organization', ['id' => $orgId], $actingUser->getUserIdentifier());
             throw $this->createNotFoundException(self::NOT_FOUND);
         }
+        if ($this->userService->isAdminOfOrganization($org)) {
             $user = $this->userRepository->find($userId);
             if (!$user) {
                 $this->loggerService->logEntityNotFound('User', ['id' => $user->getId()], $actingUser->getUserIdentifier());
@@ -729,8 +729,8 @@ class UserController extends AbstractController
     #[Route(path: '/accept-invitation', name: 'accept', methods: ['GET'])]
     public function acceptInvitation(Request $request): Response
     {
-        $token = $request->get('token');
-        $userId = $request->get('id');
+        $token = $request->query->get('token');
+        $userId = $request->query->get('id');
 
         if (!$token || !$userId) {
             $this->loggerService->logEntityNotFound('Token or UserId missing in accept invitation', [