Im currently trying to make a medication refill app where registered users can post requests and i want those information accessible to only selected users including the person that made the request.
Im currently using JWT to generate tokens.
I was wondering if anyone has an idea how to get this started?
So far i can post a json request as a user but the information can be retrieved by any registered user. I want only few selected users to be able to access this
With your current questions, we don’t have enough context to know what you already know or don’t know, so it is impossible to guide you without just telling you the answer (which we won’t do).
It is pretty typical on here for people to share a codepen / jsfiddle example of what they have tried so that anyone helping has more of an idea of what help is actually helpful.
Please provide some example of what you’ve tried and I’m sure you’ll get more help.
Happy coding 
Using this may be of help https://docs.mongodb.com/manual/core/collection-level-access-control/