app/Http/Middleware/Api/Application/AuthenticateApplicationUser.php

<?php

namespace App\Http\Middleware\Api\Application;

use Illuminate\Http\Request;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;

class AuthenticateApplicationUser
{
    /**
     * Authenticate that the currently authenticated user is an administrator
     * and should be allowed to proceed through the application API.
     */
    public function handle(Request $request, \Closure $next): mixed
    {
        /** @var \App\Models\User|null $user */
        $user = $request->user();
        if (!$user || !$user->isRootAdmin()) {
            throw new AccessDeniedHttpException('This account does not have permission to access the API.');
        }

        return $next($request);
    }
}
Implement application API Keys 2018-01-18 21:36:15 -06:00			`<?php`

Switch namespace back to App 2024-03-12 22:39:16 -04:00			`namespace App\Http\Middleware\Api\Application;`
Implement application API Keys 2018-01-18 21:36:15 -06:00
			`use Illuminate\Http\Request;`
			`use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;`

Move everything around as needed to get things setup for the client API 2018-02-25 15:30:56 -06:00			`class AuthenticateApplicationUser`
Implement application API Keys 2018-01-18 21:36:15 -06:00			`{`
			`/**`
			`* Authenticate that the currently authenticated user is an administrator`
Fix app/ spelling errors 2018-05-13 10:50:56 -04:00			`* and should be allowed to proceed through the application API.`
Implement application API Keys 2018-01-18 21:36:15 -06:00			`*/`
Laravel 10 (#4706) 2023-02-23 12:30:16 -07:00			`public function handle(Request $request, \Closure $next): mixed`
Implement application API Keys 2018-01-18 21:36:15 -06:00			`{`
Switch namespace back to App 2024-03-12 22:39:16 -04:00			`/** @var \App\Models\User\|null $user */`
Fix up API handling logic for keys and set a prefix on all keys 2022-05-22 19:03:51 -04:00			`$user = $request->user();`
Admin Roles (#502) * add spatie/permissions * add policies * add role resource * add root admin role handling * replace some "root_admin" with function * add model specific permissions * make permission selection nicer * fix user creation * fix tests * add back subuser checks in server policy * add custom model for role * assign new users to role if root_admin is set * add api for roles * fix phpstan * add permissions for settings page * remove "restore" and "forceDelete" permissions * add user count to list * prevent deletion if role has users * update user list * fix server policy * remove old `root_admin` column * small refactor * fix tests * forgot can checks here * forgot use * disable editing own roles & disable assigning root admin * don't allow to rename root admin role * remove php bombing exception handler * fix role assignment when creating a user * fix disableOptionWhen * fix missing `root_admin` attribute on react frontend * add permission check for bulk delete * rename viewAny to viewList * improve canAccessPanel check * fix admin not displaying for non-root admins * make sure non root admins can't edit root admins * fix import * fix settings page permission check * fix server permissions for non-subusers * fix settings page permission check v2 * small cleanup * cleanup config file * move consts from resouce into enum & model * Update database/migrations/2024_08_01_114538_remove_root_admin_column.php Co-authored-by: Lance Pioch <lancepioch@gmail.com> * fix config * fix phpstan * fix phpstan 2.0 --------- Co-authored-by: Lance Pioch <lancepioch@gmail.com> 2024-09-21 12:27:41 +02:00			`if (!$user \|\| !$user->isRootAdmin()) {`
Slightly more clear errors 2018-02-24 12:27:41 -06:00			`throw new AccessDeniedHttpException('This account does not have permission to access the API.');`
Implement application API Keys 2018-01-18 21:36:15 -06:00			`}`

			`return $next($request);`
			`}`
			`}`