MAINHACK

Viewing / Editing File: Permission.php

<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Http\Response;
use Illuminate\Support\Facades\Request;

class Permission
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {
    	$user = auth()->user();
		$user_type = $user->user_type;

if ($user_type != 'user') {
            if (!$request->ajax()) {
                return back()->with('error', _lang('Permission denied !'));
            } else {
                return new Response('<h4 class="text-center text-danger">' . _lang('Permission denied !') . '</h4>');
            }
        }
		
		if($user_type == 'user' && $request->isOwner == false){
			$route_name = Request::route()->getName();

if( $route_name != '' && $user_type == 'user'){
				
				if(explode(".",$route_name)[1] == "update"){
					$route_name = explode(".",$route_name)[0].".edit";
				}else if(explode(".",$route_name)[1] == "store"){
					$route_name = explode(".",$route_name)[0].".create";
				}
				if( ! has_permission($route_name)){
					if( ! $request->ajax()){
					   return back()->with('error',_lang('Permission denied !'));
					}else{
					   return new Response('<h4 class="text-center text-danger">'._lang('Permission denied !').'</h4>');
					}
				}
			}

}
			
        return $next($request);
    }
}

Cancel / Back

[ MAINHACK ]

Viewing / Editing File: Permission.php

Server Info

System Features

User Info