saufi/eCert-MBIP
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f39eca4b1ce2b60ffbe8168574923c8f28a3192a
eCert-MBIP/app/Http/Middleware/EnsureIsAdmin.php
Saufi c9b50ccc5e feat: two-role system — super_admin & admin program (Fasa 12) 
- Replace is_admin boolean with role enum('super_admin','admin') via migration
- ProgramPolicy: admin program can only view/edit/delete own programs
- EnsureIsAdmin: accepts both roles; EnsureSuperAdmin: super_admin only
- UserController + views: super_admin can manage admin accounts
- Sidebar: user management link & role badge gated on isSuperAdmin()
- Fix Controller base class: add AuthorizesRequests trait
- Fix tests: replace nonAdmin() (invalid enum) with adminProgram() against super_admin-only route

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-18 08:47:58 +08:00

22 lines
421 B
PHP
Raw Blame History

<?php
namespace App\Http\Middleware;
use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;
class EnsureIsAdmin
{
public function handle(Request $request, Closure $next): Response
{
$role = $request->user()?->role;
if (! in_array($role, ['super_admin', 'admin'])) {
abort(403, 'Akses ditolak.');
}
return $next($request);
}
}
Reference in New Issue View Git Blame Copy Permalink