Laravel Middleware check Role using Laratrust/Entrust
<?php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
class ProductsController extends Controller
{
public function __construct(){
//check user role, except method that can be access by public user
$this->middleware('check_user_role:members')->except('index', 'getStateAreas', 'getCategorySubcategories','show');
}
}
<?php
namespace App\Http\Middleware;
use Closure;
class CheckUserRole
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next, $role)
{
//get current logged in user info
$user = auth()->user();
//check user role, break if role not allowed
if (!$user->hasRole($role)) {
dd('Anda tak boleh akses kawasan ini');
}
return $next($request);
}
}
protected $routeMiddleware = [
'check_user_role' => \App\Http\Middleware\CheckUserRole::class,
'check_product_ownership' => \App\Http\Middleware\CheckProductOwnership::class,
];