Reputation: 1414
Can't call Auth::user() on controller's constructor
I'm trying to check if the user has permission to a certain model. Up until now (with Laravel 5.2), I added this code at the constructor:
public function __construct()
{
if (!Auth::user()->hasPermission('usergroups')) {
abort(404);
}
}
Now, after upgrading to Laravel 5.3, Auth::user() returns null when being called from the controller's constructor. If I call it within any other method of the class, it returns the currently logged in user.
Any Ideas why?
Upvotes: 24
Views: 18164
Answers (3)
Reputation: 91
class StudentController extends Controller
{
public $role;
public function __construct()
{
$this->middleware(function ($request, $next) {
if (!Auth::user()->hasPermission('usergroups')) {
abort(404);
}
return $next($request);
});
}
}
Hope help you!!!
Update: Get your code inside
$this->middleware(function ($request, $next) {
//your code
return $next($request);
});
Upvotes: 5
Reputation: 9146
See here:
Session In The Constructor
In previous versions of Laravel, you could access session variables or the authenticated user in your controller's constructor. This was never intended to be an explicit feature of the framework. In Laravel 5.3, you can't access the session or authenticated user in your controller's constructor because the middleware has not run yet.
As an alternative, you may define a Closure based middleware directly in your controller's constructor. Before using this feature, make sure that your application is running Laravel 5.3.4 or above:
<?php namespace App\Http\Controllers; use App\User; use Illuminate\Support\Facades\Auth; use App\Http\Controllers\Controller; class ProjectController extends Controller { /** * All of the current user's projects. */ protected $projects; /** * Create a new controller instance. * * @return void */ public function __construct() { $this->middleware(function ($request, $next) { $this->projects = Auth::user()->projects; return $next($request); }); } }Of course, you may also access the request session data or authenticated user by type-hinting the Illuminate\Http\Request class on your controller action:
/** * Show all of the projects for the current user. * * @param \Illuminate\Http\Request $request * @return Response */ public function index(Request $request) { $projects = $request->user()->projects; $value = $request->session()->get('key'); // }
Upvotes: 57
Reputation: 10044
Because you're attempting to access the instance before the middleware even fires. You can use request()->user() instead.
Upvotes: 0
Related Questions
- Laravel 5.8, Auth::user() is not using User model
- Laravel, Auth::user() in controller
- Laravel 5.6 Access auth()->user() in controller constructor?
- Auth::user() return null in Laravel 5.8
- Auth::user() returns null in Laravel 5.2
- Laravel 5.4 Sessions and Auth::user() not available in controller's constructor
- Laravel 5.5, Auth::user() not working in Controller.php
- Laravel's Auth::user() returns null
- laravel 5.4 : cant access Auth::user() in the __construct method
- Auth::user() returns null Laravel 5.1 oauth 2.0