permissions systems 2.0

app/Http/Middleware/RequireRole.php

@@ -0,0 +1,42 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+
+class RequireRole
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return mixed
+     */
+    public function handle($request, Closure $next, $role)
+    {
+        $confirmed = false;
+
+        $ranking = [
+            'None' => 0,
+            'Guest' => 1,
+            'User' => 2,
+            'Admin' => 3,
+            'SuperUser' => 4,
+        ];
+
+        $check = UserPermission::where('character_id', auth()->user()->character_id)->get(['role']);
+
+        if(!isset($check[0]->role)) {
+            abort(403, "You don't any roles.  You don't belong here.");
+        }
+
+        if($ranking[$check->permission] >= $ranking[$role]) {
+            $confirmed = true;
+        }
+
+        abort_unless(auth()->check() && $confirmed, 403, "You don't have the correct role to be in this area.");
+
+        return $next($request);
+    }
+}