osb/app/Http/Middleware/Role.php

35 lines
640 B
PHP
Raw Normal View History

2018-07-31 14:11:00 +10:00
<?php
namespace App\Http\Middleware;
use Illuminate\Http\Request;
2018-07-31 14:11:00 +10:00
use Illuminate\Support\Facades\Auth;
use Closure;
2021-12-23 09:19:40 +11:00
/**
* Enable us to use the role during middleware authorisation
*/
2018-07-31 14:11:00 +10:00
class Role
{
public function handle(Request $request, Closure $next, string $role)
2018-07-31 14:11:00 +10:00
{
if ($role AND ! Auth::user())
abort(403,'Not Authenticated');
2018-07-31 14:11:00 +10:00
switch ($role) {
case 'wholesaler':
if (Auth::user()->role() == $role)
return $next($request);
break;
case 'reseller':
if (in_array(Auth::user()->role(),['wholesaler','reseller']))
return $next($request);
break;
}
abort(404,'User doesnt have role?');
}
}