commit 12.01

2026-01-12 14:25:15 +00:00
parent 36084ba590
commit ae5ab2554b
26 changed files with 1116 additions and 1083 deletions
--- a/app/Http/Middleware/CheckRole.php
+++ b/app/Http/Middleware/CheckRole.php
@@ -1,5 +1,7 @@
 <?php
+
 namespace App\Http\Middleware;
+
 use Closure;
 use Illuminate\Http\Request;

@@ -7,10 +9,14 @@ class CheckRole
 {
    public function handle(Request $request, Closure $next, $role)
    {
-        if (!auth()->check() || !auth()->user()->isEmployeeOrAdmin()) {
-            return response()->json(['error' => 'Доступ запрещен'], 403);
+        if (!$request->user()) {
+            return response()->json(['message' => 'Unauthorized'], 401);
        }
+
+        if ($request->user()->role !== $role) {
+            return response()->json(['message' => 'Access denied'], 403);
+        }
+
        return $next($request);
    }
-}
-
+}