/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $userId = \Authorizer::getResourceOwnerId(); $projectId = $request->project; if ($this->repository->isOwner($projectId, $userId) == false) { return ['error' => 'Acesso negado ao projeto!']; } return $next($request); }
public function checkProjectOwner($projectId) { $userId = \Authorizer::getResourceOwnerId(); return $this->repository->isOwner($projectId, $userId); }
public function checkProjectOwner($projectFileId) { $userId = \Authorizer::getResourceOwnerId(); $projectId = $this->repository->skipPresenter()->find($projectFileId)->project_id; return $this->projectRepository->isOwner($projectId, $userId); }