/** * Store a newly created resource in storage. * * @return Response */ public function postAdd(Request $request, $product_id) { $deal = Deal::firstOrCreate(['user_id' => $request->user()->id, 'product_id' => $product_id]); $product = \App\Product::find($product_id); $request->session()->put("deals.{$product_id}", $product); return response()->json(['id' => $product_id, 'mobile' => trans('products.mobile', ['mobile' => $request->user()->mobile]), 'text' => trans_choice('products.deal', $product->deals_count)]); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user() == null || !$request->user()->is_admin) { return redirect()->guest('auth/login'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user() && $request->user()->isAuthor()) { return $next($request); } return redirect("/blog"); }
public function unfollow(Request $request, User $user) { if ($request->user()->canUnfollow($user)) { $request->user()->following()->detach($user); } return redirect()->back(); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($this->auth->guest()) { if ($request->ajax()) { return response('Unauthorized.', 403); } else { return redirect()->guest('auth/login'); } } if (!$request->user()->isAdmin() && $request->user()->cannot('dashboard_view')) { $this->auth->logout(); return redirect()->guest('auth/login')->withErrors(trans('messages.permission_denied')); } $route_array = explode('.', $request->route()->getName()); $permission_name = array_search($route_array[2], array_dot($this->permission_fields)); if ($permission_name) { $route_array[2] = explode('.', $permission_name)[0]; } // $route_name = implode('_', $route_array); $route_name = $route_array[1] . '_' . $route_array[2]; if (!$request->user()->isAdmin() && $request->user()->cannot($route_name)) { //PATCH 为null if ($request->ajax()) { return response()->json(['status' => trans('messages.permission_denied'), 'type' => 'error', 'code' => 403]); } else { return view('errors.403'); } } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!$request->user() || !$request->user()->is_admin) { return redirect()->route('home')->with('warning-message', 'You are not authorized to access settings.'); } return $next($request); }
public function getIndex(Request $request) { $perpage = 20; $user = $request->user(); $mylogs = $request->user()->mylog()->where('mylog_action', '=', 'login')->orWhere('mylog_action', '=', 'logout')->orderBy('created_at', 'DESC')->paginate($perpage); return view('manage.profile.index', ['TITLE' => '个人中心', 'META_KEYWORDS' => META_KEYWORDS, 'META_DESC' => META_DESC, 'PAGE_CODE' => '', 'user' => $user, 'mylogs' => $mylogs]); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user() and !$request->user()->subscribed('main')) { return redirect('subscribe'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->route('type') == "schede_tecniche" && (!$request->user() || !$request->user()->can("scarica_allegati"))) { return redirect()->to('/?login=true'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @param $role * @return mixed */ public function handle($request, Closure $next, $role = 1) { /** * Account Role * ------------ * 0 -> Member * 1 -> Moderator * 2 -> Admin * 3 -> Super Admin * 4 -> Lead Developer */ /** * If Tampered role ie not in 0-4 */ if ($request->user()->role > 4) { return redirect('/')->withNotification("Sorry buddy! You are not authorized for that action.")->withType('warning'); } /** * Check for rights and with params if provided. */ if ($request->user()->role < $role) { return redirect('/')->withNotification("Sorry buddy! You are not authorized for that action.")->withType('warning'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user()->role != 'administrator' && $request->user()->role != 'editor') { return redirect('/'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user()->role == 'cliente' or $request->user()->role == 'socio') { return $next($request); } return redirect('/'); }
/** * Run the request filter. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @param string $role * @return mixed */ public function handle($request, Closure $next) { if ($request->user()->role != 'admin' && $request->user()->role != 'user') { return Redirect::action('ClientController@index'); } return $next($request); }
public function store(Request $request, $id) { $orgOrder = OrganizationOrder::findOrFail($id); $lineItem = new LineItem(); $lineItem->organization_order_id = $id; if ($request->input('UserOrder') && strlen($request->input('UserOrder')['order']) > 0) { if ($request->input('UserOrder')['default'] == 1) { UserOrder::where('user_id', '=', $request->user()->id)->where('restaurant_id', '=', $orgOrder->restaurant()->id)->where('default', '=', '1')->update(['default' => 0]); } $userOrder = new UserOrder(); $userOrder->fill($request->input('UserOrder')); $userOrder->user_id = $request->user()->id; $userOrder->restaurant_id = $orgOrder->restaurant()->id; $userOrder->save(); $lineItem->user_order = $userOrder->id; } else { $lineItem->user_order = $request->input('LineItem')['user_order']; } if ($lineItem->isValid()) { $lineItem->save(); return redirect()->route('orgorder.show', ['orgId' => $orgOrder->organization()->id, 'id' => $lineItem->organization_order_id]); } else { return redirect()->route('lineitem.create', ['id' => $id])->withErrors($lineItem->getErrors())->withInput(); } }
/** * Display a listing of the resource. * * @param UserRepositoryInterface $userRepository * @param ProjectRepositoryInterface $projectRepository * @param Request $request * @return \Illuminate\Http\Response */ public function index(UserRepositoryInterface $userRepository, ProjectRepositoryInterface $projectRepository, Request $request) { $projects = $userRepository->drafts($request->user()->id); $publishedProjects = $userRepository->published($request->user()->id); $failedProjects = $userRepository->failed($request->user()->id); return view('user.project.index', compact('projects', 'publishedProjects', 'failedProjects')); }
/** * Determine if the authenticated user is a developer. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return \Illuminate\Http\Response */ public function handle($request, $next) { if ($request->user() && Spark::developer($request->user()->email)) { return $next($request); } return $request->ajax() || $request->wantsJson() ? response('Unauthorized.', 401) : redirect()->guest('login'); }
public function getThumbnail(Request $request, Upload $upload) { if (!$request->user() || $request->user()->id !== $upload->user_id && !$request->user()->isPrivilegedUser()) { return abort(StatusCode::NOT_FOUND); } return response()->download($upload->getThumbnailPath(true), 'thumbnail.' . $upload->name); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @param string $role * @return mixed */ public function handle($request, Closure $next, $role) { switch ($role) { case 'admin': if (!$request->user()->is_admin) { if ($request->ajax()) { return response('Access Denied')->setStatusCode(403); } abort(404); } break; case 'moderator': if (!$request->user()->is_moderator) { if ($request->ajax()) { return response('Access Denied')->setStatusCode(403); } abort(404); } break; default: return response('Access Denied')->setStatusCode(403); break; } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user()->admin || $request->user()->owner == null) { return redirect('/'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user() == null || !$request->user()->isVolunteer()) { return redirect('/'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $locale = config('app.locale'); $adminLocale = config('typicms.admin_locale'); $locales = config('translatable.locales'); // If locale is present in app.locales… if (in_array(Input::get('locale'), $locales)) { // …store locale in session Session::put('locale', Input::get('locale')); } // Set app.locale config(['app.locale' => Session::get('locale', $locale)]); // Set Translator locale to typicms.admin_locale config Lang::setLocale($adminLocale); $localesForJS = []; foreach ($locales as $key => $locale) { $localesForJS[] = ['short' => $locale, 'long' => trans('global.languages.' . $locale)]; } // Set Locales to JS. JavaScript::put(['_token' => csrf_token(), 'encrypted_token' => Crypt::encrypt(csrf_token()), 'adminLocale' => $adminLocale, 'locales' => $localesForJS, 'locale' => config('app.locale')]); // set curent user preferences to Config if ($request->user()) { $prefs = $request->user()->preferences; config(['typicms.user' => $prefs]); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!$request->user() || !$request->user()->is_admin) { return redirect('/'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user()->role == 'agent' || $request->user()->role == 'admin') { return $next($request); } return redirect('dashboard')->with('fails', 'You are not Autherised'); }
/** * Добавить комментарий * @param Request $request * @return $this|\Illuminate\Http\RedirectResponse */ public function create(Request $request, $category_id, $content_id) { //Authenticates if (!$request->user()) { //Пользователь не прошел аутентификацию return redirect()->back()->with('error', 'Необходима авторизация!!!'); } //Проверяем ввод $validator = Validator::make($request->all(), $this->rules, $this->messages); if ($validator->fails()) { //Валидация не пройдена return redirect()->back()->withErrors($validator->errors())->withInput(); } else { //Сохраняем комментарий $comment = new Comment(); $comment->category_id = $category_id; $comment->content_id = $content_id; $comment->active = config('mycomment.active'); $comment->users_id = $request->user()->id; $comment->comment = clean($request->input('comment'), ['HTML.Allowed' => '']); //Очищаем текст от тегов и т.п. $comment->save(); return redirect()->back(); } }
public function test(Request $request) { // $user = User::find(1); // // if($user->hasRole('Founder')){ // return '您是创始人'.'ID:'.$user->id; // }; if ($request->user()) { // $userRoles = $request->user()->roles()->get(); // foreach($userRoles as $r){ // $roles[] = $r->name; // } // var_dump($roles); $userRoles = Role::all(); foreach ($userRoles as $r) { $roles[] = $r->name; } if (!$request->user()->hasRole($roles)) { return redirect()->guest('auth/login'); } //$can = Route::currentRouteName();//当前route-name exp:user.test $can = Route::currentRouteAction(); echo $can; $res = $request->user()->can($can); echo $res; } }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle(Request $request, Closure $next) { if (!$this->auth->check()) { Auth::logout(); Session::flush(); flash()->error(trans('messages.not_logged_in'))->important(); return redirect()->route('login'); } if (config('upste.require_email_verification') && !$request->user()->confirmed) { Auth::logout(); Session::flush(); flash()->error(trans('messages.not_confirmed'))->important(); return redirect()->route('login'); } if (config('upste.require_user_approval') && !$request->user()->enabled) { Auth::logout(); Session::flush(); flash()->error(trans('messages.not_activated'))->important(); return redirect()->route('login'); } if ($request->user()->banned) { Auth::logout(); Session::flush(); flash()->error(trans('messages.not_activated'))->important(); return redirect()->route('login'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($request->user() == null || $request->user()->isManager == false) { throw new HttpException(404); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($user = $request->user()) { //判断是不是管理员 $userRoles = Role::all(); foreach ($userRoles as $r) { $roles[] = $r->name; } if (!$user->hasRole($roles)) { redirect()->guest('auth/login'); } //创始人拥有所有权限 if (!$user->hasRole('Founder')) { $can = Route::currentRouteName(); //当前routeName exp:user.test $res = $request->user()->can($can); if (!$res) { return view('admin.noaccess'); } } } else { return redirect()->guest('auth/login'); } return $next($request); }
public function postIndex(Request $request) { //バリデーション $validation = array(); if (!is_null($request->name)) { //必須かつ、ユニークかつ、20文字以下 $validation["name"] = "required|max:20|unique:users,name," . $request->user()->user_id . ",user_id"; } if (!is_null($request->email)) { //必須かつ、ユニークかつ、255文字以下、メアド準拠 $validation["email"] = "required|email|max:255|unique:users,email," . $request->user()->email . ",email"; } if (!is_null($request->entrance_year)) { //必須 $validation["entrance_year"] = "required"; } if (!is_null($request->faculty)) { //必須 $validation["faculty"] = "required"; } if (!is_null($request->sex)) { //必須 $validation["sex"] = "required"; } $this->validate($request, $validation); $data['user'] = $this->user; $data['reviews'] = $this->review; $this->user->fill($request->all()); $this->user->save(); return view('mypage/index', $data); }
/** * Store a newly created resource in storage. * * @param Request $request * @return Response */ public function store(Request $request, PropertyInterface $property, booking $booking, serviceBooking $serviceBooking, service $service) { $ownerId = $property->findOrFail($request->get('propertyId'))->owner->id; $orderRef = generateRandomString(); $invoiceData = ['serviceId' => $request->get('selectedServiceIds'), 'payee_id' => $request->user()->id, 'seller_id' => $ownerId, 'orderRef' => $orderRef, 'amount' => $request->get('overallTotal')]; $newInvoice = $this->invoices->create($invoiceData); $bookingData = ['user_id' => $request->user()->id, 'property_id' => $request->get('propertyId'), 'invoice_id' => $newInvoice->id, 'price' => $request->get('nightRate'), 'checkInDate' => convertToCarbonDate($request->get('checkInDate')), 'checkOutDate' => convertToCarbonDate($request->get('checkOutDate'))]; $booking->create($bookingData); if (count($request->get('selectedServiceIds')) > 0) { $serviceData = []; foreach ($request->get('selectedServiceIds') as $serviceId) { $theService = $service->findOrFail($serviceId); $serviceData['service_id'] = $serviceId; $serviceData['user_id'] = $request->user()->id; if ($theService->type == 'onceoff') { $serviceData['quantity'] = 1; } if ($theService->type == 'daily') { $serviceData['quantity'] = $bookingData['checkOutDate']->diffInDays($bookingData['checkInDate']); } $serviceData['invoice_id'] = $newInvoice->id; } $serviceBooking->create($serviceData); } return ['response' => 'completed', 'orderRef' => $orderRef, 'propertyId' => $request->get('propertyId')]; }