feat: ship creator journey v2 and profile updates
This commit is contained in:
@@ -21,7 +21,7 @@ class ConditionalCors
|
||||
}
|
||||
|
||||
// Fallback to env if config wasn't populated for some reason.
|
||||
$enabled = env('CP_ENABLE_CORS', true);
|
||||
$enabled = env('CP_ENABLE_CORS', false);
|
||||
|
||||
if (! $enabled) {
|
||||
return $next($request);
|
||||
|
||||
32
app/Http/Middleware/EnsureArtworkMaturityAccess.php
Normal file
32
app/Http/Middleware/EnsureArtworkMaturityAccess.php
Normal file
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
namespace App\Http\Middleware;
|
||||
|
||||
use Closure;
|
||||
use Illuminate\Http\Request;
|
||||
use Symfony\Component\HttpFoundation\Response;
|
||||
|
||||
final class EnsureArtworkMaturityAccess
|
||||
{
|
||||
public function handle(Request $request, Closure $next): Response
|
||||
{
|
||||
if ($request->user('controlpanel') !== null) {
|
||||
return $next($request);
|
||||
}
|
||||
|
||||
$user = $request->user();
|
||||
$role = strtolower((string) ($user?->role ?? ''));
|
||||
|
||||
if (in_array($role, ['admin', 'moderator'], true)) {
|
||||
return $next($request);
|
||||
}
|
||||
|
||||
if (! $request->expectsJson() && route('cp.login', absolute: false) !== null) {
|
||||
return redirect()->route('cp.login');
|
||||
}
|
||||
|
||||
abort(Response::HTTP_FORBIDDEN, 'Forbidden.');
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user