Patrick Obafemi
Reputation: 1066
How to throw an error if user role is not allowed Laravel
I am trying to leverage the Laravel auth system and add logic that does not allow you to log in if you have the user role of user. I want to extend authenticate users.
protected function sendLoginResponse(Request $request)
{
$user = $this->guard()->user();
$request->session()->regenerate();
if ($user->role != 'admin') {
return redirect()->back()->with('error', 'You do not have permissions to view this page');
$this->clearLoginAttempts($request);
return $this->authenticated($request, $this->guard()->user())
?: redirect()->intended($this->redirectPath());
}
}
The issue is it still logs me in. How can I make this logic work?
Upvotes: 0
Views: 169
Answers (1)
MrEvers
Reputation: 1072
Add this function to your LoginController, it will override the default function and add an extra constraint for logging in:
/**
* override to add check
*
* @param \Illuminate\Http\Request $request
* @return array
*/
protected function credentials(Request $request)
{
$credentials = $request->only($this->username(), 'password');
$credentials['role'] = 'admin'; //only login admin
return $credentials;
}
Upvotes: 2
Related Questions
- Laravel Blade check user role
- How can I check auth user role in laravel?
- How do I validate User role on Laravel 5.8s Built in Authentication?
- Checking the user's role in Laravel
- Laravel check if user has specific role before proceeding with other functions
- Laravel check user role on function construct
- check a user_role laravel 5.4
- Check If user has a role In Laravel 5.5
- Prevent login based on user role - Laravel
- Codeception How to test if a User has a Role