updated how require permission works

2021-08-02 01:30:22 -05:00
parent 669f716112
commit 5b88887f53
2 changed files with 11 additions and 3 deletions
--- a/app/Http/Middleware/RequirePermission.php
+++ b/app/Http/Middleware/RequirePermission.php
@@ -18,9 +18,17 @@ class RequirePermission
     */
    public function handle($request, Closure $next, $permission)
    {
-        $perms = UserPermission::where(['character_id' => auth()->user()->character_id, 'permission'=> $permission])->get(['permission']);
+        $role = UserRole::where([
+            'character_id' => auth()->user()->character_id,
+        ])->get(['role']);

-        abort_unless(auth()->check() && isset($perms[0]->permission), 403, "You don't have the correct permission to be in this area.");
+        if($role[0]->role != "Admin") {
+            $perms = UserPermission::where(['character_id' => auth()->user()->character_id, 'permission'=> $permission])->get(['permission']);
+
+            abort_unless(auth()->check() && isset($perms[0]->permission), 403, "You don't have the correct permission to be in this area.");
+        }
+
+        

        return $next($request);
    }