34 lines
907 B
PHP
34 lines
907 B
PHP
<?php
|
|
|
|
namespace App\Http\Middleware;
|
|
|
|
use Closure;
|
|
use Illuminate\Http\Request;
|
|
use Symfony\Component\HttpFoundation\Response;
|
|
|
|
class EmployerMiddleware
|
|
{
|
|
/**
|
|
* Handle an incoming request.
|
|
*/
|
|
public function handle(Request $request, Closure $next): Response
|
|
{
|
|
// Prefer Laravel's built-in auth (survives page refresh reliably via remember cookie)
|
|
if (auth()->check() && auth()->user()->role === 'employer') {
|
|
return $next($request);
|
|
}
|
|
|
|
// Fallback: check custom session key (used during registration auto-login)
|
|
$sessionUser = session('user');
|
|
$role = is_array($sessionUser)
|
|
? ($sessionUser['role'] ?? null)
|
|
: ($sessionUser->role ?? null);
|
|
|
|
if ($sessionUser && $role === 'employer') {
|
|
return $next($request);
|
|
}
|
|
|
|
return redirect()->route('employer.login');
|
|
}
|
|
}
|