Mongi\Mongicommerce\Http\Middleware\AdminMiddleware::handle()

Complexity

Conditions	3
Paths	3

Size

Total Lines	13
Code Lines	7

Duplication

Lines	0
Ratio	0 %

Importance

Changes	1
Bugs	0	Features	1

<?php
    public function handle($request, Closure $next)
    {
        if (!Auth::check()) {
            // I included this check because you have it, but it really should be part of your 'auth' middleware, most likely added as part of a route group.
            return redirect(route('admin.login'));
        }
        // Perform action
        $user = Auth::user();

        if ($user->admin == true) {

Accessing admin on the interface Illuminate\Contracts\Auth\Authenticatable suggest that you code against a concrete implementation. How about adding an instanceof check?

            return $next($request);
        } else {
            abort(403);
        }