Issues in RoleMiddleware.php (master) - Issues in master - 365Werk/Laravel-JWT-Auth-Roles - Measure and Improve Code Quality continuously with Scrutinizer

Issues (4)

src/Middlewares/RoleMiddleware.php (1 issue)

Labels

Bug 1

Severity

Major 1

<?php

namespace Werk365\JwtAuthRoles\Middlewares;

use Closure;
use Illuminate\Support\Facades\Auth;
use Werk365\JwtAuthRoles\Exceptions\AuthException;

class RoleMiddleware
{
    public function handle($request, Closure $next, $role)
    {
        $roles = is_array($role)
            ? $role
            : explode('|', $role);
        $user_roles = array_map('strtolower', Auth::user()->roles);

        $same = (array_intersect($roles, $user_roles));

        if (empty($same)) {
            throw AuthException::auth('401', 'User does not have right roles');
        }

        return $next($request);
    }
}


1			<?php
2
3			namespace Werk365\JwtAuthRoles\Middlewares;
4
5			use Closure;
6			use Illuminate\Support\Facades\Auth;
7			use Werk365\JwtAuthRoles\Exceptions\AuthException;
8
9			class RoleMiddleware
10			{
11			public function handle($request, Closure $next, $role)
12			{
13			$roles = is_array($role)
14			? $role
15			: explode('\|', $role);
16			$user_roles = array_map('strtolower', Auth::user()->roles);
			0 ignored issues – show Bug introduced 2020-09-15 12:16 UTC by Report Bug Copy Issue Report Show Similar Issues like this Accessing `roles` on the interface `Illuminate\Contracts\Auth\Authenticatable` suggest that you code against a concrete implementation. How about adding an `instanceof` check? Loading history...
17			$same = (array_intersect($roles, $user_roles));
18
19			if (empty($same)) {
20			throw AuthException::auth('401', 'User does not have right roles');
21			}
22
23			return $next($request);
24			}
25			}
26

365Werk / Laravel-JWT-Auth-Roles

Issues (4)

src/Middlewares/RoleMiddleware.php (1 issue)

Labels

Severity

Introduced By

Duplication Side-by-Side

Filter issues like