check() && auth()->user()->role === 'employer') { return $next($request); } // Fallback: check custom session key (used during registration auto-login) $sessionUser = session('user'); $role = is_array($sessionUser) ? ($sessionUser['role'] ?? null) : ($sessionUser->role ?? null); if ($sessionUser && $role === 'employer') { return $next($request); } return redirect()->route('employer.login'); } }