for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
class CheckIfAdmin
{
/**
* Checked that the logged in user is an administrator.
*
* --------------
* VERY IMPORTANT
* If you have both regular users and admins inside the same table,
* change the contents of this method to check that the logged in user
* is an admin, and not a regular user.
* @param [type] $user [description]
[type]
0
* @return bool [description]
*/
private function checkIfUserIsAdmin($user)
$user
If this is a false-positive, you can also ignore this issue in your code via the ignore-unused annotation
ignore-unused
private function checkIfUserIsAdmin(/** @scrutinizer ignore-unused */ $user)
This check looks for parameters that have been defined for a function or method, but which are not used in the method body.
// return ($user->is_admin == 1);
return true;
}
* Answer to unauthorized access request.
* @param [type] $request [description]
* @return [type] [description]
private function respondToUnauthorizedRequest($request)
if ($request->ajax() || $request->wantsJson()) {
return response(trans('backpack::base.unauthorized'), 401);
} else {
return redirect()->guest(backpack_url('login'));
* Handle an incoming request.
* @param Request $request
* @return mixed
public function handle($request, Closure $next)
if (backpack_auth()->guest()) {
return $this->respondToUnauthorizedRequest($request);
if (! $this->checkIfUserIsAdmin(backpack_user())) {
return $next($request);
academico-sis /
academico
Loading history...