misc_pterodactyl-panel/app/Http/Middleware/Api/Application/AuthenticateApplicationUser.php

26 lines
703 B
PHP
Raw Permalink Normal View History

2018-01-19 03:36:15 +00:00
<?php
2018-01-20 01:58:57 +00:00
namespace Pterodactyl\Http\Middleware\Api\Application;
2018-01-19 03:36:15 +00:00
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
class AuthenticateApplicationUser
2018-01-19 03:36:15 +00:00
{
/**
* Authenticate that the currently authenticated user is an administrator
2018-05-13 14:50:56 +00:00
* and should be allowed to proceed through the application API.
2018-01-19 03:36:15 +00:00
*
* @return mixed
*/
public function handle(Request $request, Closure $next)
{
2021-01-23 20:33:34 +00:00
if (is_null($request->user()) || !$request->user()->root_admin) {
2018-02-24 18:27:41 +00:00
throw new AccessDeniedHttpException('This account does not have permission to access the API.');
2018-01-19 03:36:15 +00:00
}
return $next($request);
}
}