<?php

namespace App\Http\Middleware;

use Closure;

use App\Models\User\UserRole;

class RequireRole
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @return mixed
     */
    public function handle($request, Closure $next, $role)
    {
        $confirmed = false;

        $ranking = [
            'None' => 0,
            'Guest' => 1,
            'User' => 2,
            'Admin' => 3,
            'SuperUser' => 4,
        ];

        $check = UserRole::where('character_id', auth()->user()->character_id)->get(['role']);

        if(!isset($check[0]->role)) {
            abort(403, "You don't any roles.  You don't belong here.");
        }

        if($ranking[$check[0]->role] >= $ranking[$role]) {
            $confirmed = true;
        }

        abort_unless(auth()->check() && $confirmed, 403, "You don't have the correct role to be in this area.");

        return $next($request);
    }
}