/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!Sentinel::check() && !Sentinel::hasAccess('admin')) { return Redirect::to('login')->withErrors(['Only admins can access this page.']); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next, $role) { // dump($role); //判断用户是否登陆,未登陆跳转到登陆页面 if (!Sentinel::check()) { return redirect()->route('account_login_get'); } // $user = Sentinel::getUser(); // //判断用户是否被激活 // if(!Activation::completed($user)){ // Sentinel::logout($user, true); // return redirect()->route('account_login_get'); // } if (!Sentinel::hasAccess($role)) { return redirect($this->pre_web_page_url()); } // $user = Sentinel::getUser(); // dump($user->hasAccess($role)); return $next($request); }
/** * Remove the specified resource from storage. * * @param int $id * @return \Illuminate\Http\Response */ public function destroy($id) { if (!Sentinel::hasAccess(["project.delete"])) { abort(401); } }
/** * Display the specified resource. * * @param $project_id * @param $task_id * * @return \Illuminate\Http\Response * @internal param int $id */ public function show($project_id, $task_id) { $data = []; $data["editOnly"] = true; if (!Sentinel::hasAccess(["task.show"])) { abort(401); } if (Sentinel::hasAccess(["task.update"])) { $data["editOnly"] = false; } }
/** * Determines if the current user has access to given permission * @param $permission * @return bool */ public function hasAccess($permission) { if (!Sentinel::check()) { return false; } return Sentinel::hasAccess($permission); }