user(); if (! $user || ! $user->isAdmin()) { abort(Response::HTTP_FORBIDDEN, 'Only admins can access this area.'); } return $next($request); } }