user(); if (! $user) { return response()->json(['message' => 'Unauthorized.'], 401); } $status = strtolower(trim((string) ($user->status ?? ''))); $isVerified = filter_var($user->is_verified ?? false, FILTER_VALIDATE_BOOLEAN); $isSuspended = filter_var($user->is_suspended ?? false, FILTER_VALIDATE_BOOLEAN); if (! $isVerified || $status !== 'active' || $isSuspended) { return response()->json([ 'message' => 'Account unavailable.', ], 403); } return $next($request); } }