Laravel Middleware check Role using Laratrust/Entrust

5/7/2017 - 12:25 AM

Laravel Middleware check Role using Laratrust/Entrust

<?php

namespace App\Http\Controllers;

use Illuminate\Http\Request;

class ProductsController extends Controller
{
    public function __construct(){

        //check user role, except method that can be access by public user

        $this->middleware('check_user_role:members')->except('index', 'getStateAreas', 'getCategorySubcategories','show');  

    }
}

App\Http\Middleware\CheckUserRole.php

<?php

namespace App\Http\Middleware;

use Closure;

class CheckUserRole
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next, $role)
    {
        //get current logged in user info
        $user = auth()->user();

        //check user role, break if role not allowed

        if (!$user->hasRole($role)) {
            dd('Anda tak boleh akses kawasan ini');
        }

        return $next($request);
    }
}

App\Http\Kernel.php

protected $routeMiddleware = [
        'check_user_role' => \App\Http\Middleware\CheckUserRole::class,
        'check_product_ownership' => \App\Http\Middleware\CheckProductOwnership::class,
    ];

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

Laravel Middleware check Role using Laratrust/Entrust