f83f21936f
API CI/CD / Validate (composer + pint) (push) Successful in 3m30s
API CI/CD / Test (PHPUnit) (push) Failing after 5m4s
API CI/CD / Build frontend assets (push) Successful in 1m1s
API CI/CD / Security audit (push) Failing after 49s
API CI/CD / Deploy to shared hosting (PHP) (push) Has been skipped
38 lines
1.1 KiB
PHP
38 lines
1.1 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Middleware;
|
|
|
|
use App\Services\Auth\PermissionCheckService;
|
|
use App\Support\AccountAvailability;
|
|
use Closure;
|
|
use Illuminate\Http\Request;
|
|
use Symfony\Component\HttpFoundation\Response;
|
|
|
|
class RequirePermission
|
|
{
|
|
public function __construct(private PermissionCheckService $permissions) {}
|
|
|
|
public function handle(Request $request, Closure $next, string $permission): Response
|
|
{
|
|
$userId = (int) ($request->user()?->id ?? 0);
|
|
if ($userId <= 0) {
|
|
return response()->json(['status' => false, 'message' => 'Unauthorized.'], 401);
|
|
}
|
|
|
|
$user = $request->user();
|
|
if (AccountAvailability::isUnavailable($user)) {
|
|
return response()->json(['message' => 'Account unavailable.'], 403);
|
|
}
|
|
|
|
if (! $this->permissions->hasPermission($userId, $permission)) {
|
|
if ($request->expectsJson()) {
|
|
return response()->json(['status' => false, 'message' => 'Access denied.'], 403);
|
|
}
|
|
|
|
return response()->json(['status' => false, 'message' => 'Access denied.'], 403);
|
|
}
|
|
|
|
return $next($request);
|
|
}
|
|
}
|