api/app/Http/Middleware/EnsureUserIsOrga.php

31 lines
718 B
PHP

<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;
class EnsureUserIsOrga
{
/**
* Handle an incoming request.
*
* @param \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response) $next
*/
public function handle(Request $request, Closure $next): Response
{
/** @var \App\Models\User $user */
$user = $request->user();
if (
! $user ||
($user->role !== \App\Enums\UserRole::ORGA && $user->role !== \App\Enums\UserRole::ADMIN)
) {
abort(403, 'Unauthorized action.');
}
return $next($request);
}
}