user(); if (!$user) $user = User::getDefault(); // Share variables with views view()->share('signedIn', auth()->check()); view()->share('currentUser', $user); // Share variables with controllers $this->currentUser = $user; $this->signedIn = auth()->check(); } /** * Stops the application and shows a permission error if * the application is in demo mode. */ protected function preventAccessForDemoUsers() { if (config('app.env') === 'demo') $this->showPermissionError(); } /** * Adds the page title into the view. * @param $title */ public function setPageTitle($title) { view()->share('pageTitle', $title); } /** * On a permission error redirect to home and display. * the error as a notification. */ protected function showPermissionError() { Session::flash('error', trans('errors.permission')); $response = request()->wantsJson() ? response()->json(['error' => trans('errors.permissionJson')], 403) : redirect('/', 403); throw new HttpResponseException($response); } /** * Checks for a permission. * @param string $permissionName * @return bool|\Illuminate\Http\RedirectResponse */ protected function checkPermission($permissionName) { if (!$this->currentUser || !$this->currentUser->can($permissionName)) { $this->showPermissionError(); } return true; } /** * Check the current user's permissions against an ownable item. * @param $permission * @param Ownable $ownable * @return bool */ protected function checkOwnablePermission($permission, Ownable $ownable) { $permissionBaseName = strtolower($permission) . '-'; if (userCan($permissionBaseName . 'all')) return true; if (userCan($permissionBaseName . 'own') && $ownable->createdBy->id === $this->currentUser->id) return true; $this->showPermissionError(); } /** * Check if a user has a permission or bypass if the callback is true. * @param $permissionName * @param $callback * @return bool */ protected function checkPermissionOr($permissionName, $callback) { $callbackResult = $callback(); if ($callbackResult === false) $this->checkPermission($permissionName); return true; } }