Began working on security.
This commit is contained in:
@@ -9,6 +9,15 @@ use Illuminate\Http\Response;
|
||||
|
||||
class ExternalLinkController extends Controller
|
||||
{
|
||||
function __construct()
|
||||
{
|
||||
$this->middleware("permission:link.external.list")->only("index");
|
||||
$this->middleware("permission:link.external.create")->only(["create", "store"]);
|
||||
$this->middleware("permission:link.external.show")->only("show");
|
||||
$this->middleware("permission:link.external.edit")->only(["edit", "update"]);
|
||||
$this->middleware("permission:link.external.delete")->only("destroy");
|
||||
}
|
||||
|
||||
/**
|
||||
* Display a listing of the resource.
|
||||
*
|
||||
|
||||
@@ -14,13 +14,14 @@ class UserController extends Controller
|
||||
{
|
||||
public function __construct()
|
||||
{
|
||||
// $this->middleware([ "auth" ])->only("logout");
|
||||
// $this->middleware([ "guest" ])->only("login");
|
||||
//
|
||||
// $this->middleware([ "permission:user.list", "role:admin" ])->only("index");
|
||||
// $this->middleware([ "permission:user.show", "role:admin" ])->only("show");
|
||||
// $this->middleware([ "permission:user.edit", "role:admin" ])->only([ "edit", "update" ]);
|
||||
// $this->middleware([ "permission:user.delete", "role:admin" ])->only("delete");
|
||||
$this->middleware([ "auth" ])->only("logout");
|
||||
$this->middleware([ "guest" ])->only("login");
|
||||
|
||||
$this->middleware([ "check.auth:user.list" ])->only("index");
|
||||
$this->middleware([ "check.auth:user.show" ])->only("show");
|
||||
$this->middleware([ "check.auth:user.create" ])->only("create");
|
||||
$this->middleware([ "check.auth:user.edit" ])->only("edit", "update");
|
||||
$this->middleware([ "check.auth:user.delete" ])->only("delete");
|
||||
}
|
||||
|
||||
/**
|
||||
@@ -54,7 +55,7 @@ class UserController extends Controller
|
||||
*/
|
||||
public function store(Request $request)
|
||||
{
|
||||
Log::debug("STORE FUNCTION");
|
||||
// Log::debug("STORE FUNCTION");
|
||||
|
||||
$data = $request->validate([
|
||||
"name_first" => "required|max:255",
|
||||
@@ -65,17 +66,17 @@ class UserController extends Controller
|
||||
|
||||
]);
|
||||
|
||||
Log::debug("FINISHED VALIDATION?");
|
||||
// Log::debug("FINISHED VALIDATION?");
|
||||
|
||||
$user = new User($data);
|
||||
|
||||
Log::debug("CREATED USER [NOT PERSISTED YET]");
|
||||
// Log::debug("CREATED USER [NOT PERSISTED YET]");
|
||||
|
||||
$user->save();
|
||||
|
||||
Log::debug("SAVED USER");
|
||||
// Log::debug("SAVED USER");
|
||||
|
||||
return view("users.store");
|
||||
return Response::detect("users.store");
|
||||
}
|
||||
|
||||
/**
|
||||
@@ -182,7 +183,7 @@ class UserController extends Controller
|
||||
/*******************************************/
|
||||
|
||||
public function showLogin() {
|
||||
return view("admin.users.login");
|
||||
return Response::detect("users.login");
|
||||
}
|
||||
|
||||
public function login(Request $request) {
|
||||
@@ -190,7 +191,7 @@ class UserController extends Controller
|
||||
|
||||
if(Auth::attempt($data)) {
|
||||
//TODO: Implement home?
|
||||
return redirect()->route("users.index");
|
||||
return redirect()->route("root.index");
|
||||
}
|
||||
|
||||
return redirect()->back(303);
|
||||
@@ -199,6 +200,6 @@ class UserController extends Controller
|
||||
public function logout(Request $request) {
|
||||
Auth::logout();
|
||||
|
||||
return redirect()->to("/");
|
||||
return redirect()->route("root.index");
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user