Added option to set the guard in the middlewares

- Fix #186
- Added the option to set the guard to use in the middleware.
- Drop support to 5.1 because the guard system doesn't work as >=5.2.

Author: santigarcor

composer.json

@@ -11,10 +11,11 @@
     ],
     "require": {
         "php": ">=5.5.9",
-        "illuminate/cache": "~5.1",
-        "illuminate/console": "~5.1",
-        "illuminate/database": "~5.1",
-        "illuminate/support": "^5.1.40",
+        "illuminate/auth": "~5.2",
+        "illuminate/cache": "~5.2",
+        "illuminate/console": "~5.2",
+        "illuminate/database": "~5.2",
+        "illuminate/support": "^5.2",
         "kkszymanowski/traitor": "^0.2.0"
     },
     "require-dev": {

src/Laratrust/Middleware/LaratrustAbility.php

@@ -11,38 +11,25 @@
  */
 
 use Closure;
-use Illuminate\Contracts\Auth\Guard;
-use Illuminate\Support\Facades\Config;
+use Illuminate\Support\Facades\Auth;
 
-class LaratrustAbility
+class LaratrustAbility extends LaratrustMiddleware
 {
-    const DELIMITER = '|';
-
-    protected $auth;
-
-    /**
-     * Creates a new instance of the middleware.
-     *
-     * @param  Guard  $auth
-     */
-    public function __construct(Guard $auth)
-    {
-        $this->auth = $auth;
-    }
 
     /**
-     * Handle an incoming request.
+     * Handle incoming request.
      *
      * @param  \Illuminate\Http\Request  $request
-     * @param  Closure  $next
-     * @param  $roles
-     * @param  $permissions
-     * @param  bool  $validateAll
+     * @param  Closure $next
+     * @param  string  $roles
+     * @param  string  $permissions
+     * @param  string|null  $team
+     * @param  string|null  $options
      * @return mixed
      */
-    public function handle($request, Closure $next, $roles, $permissions, $team = null, $validateAll = false)
+    public function handle($request, Closure $next, $roles, $permissions, $team = null, $options = '')
     {
-        list($team, $validateAll) = $this->assignRealValuesTo($team, $validateAll);
+        list($team, $validateAll, $guard) = $this->assignRealValuesTo($team, $options);
 
         if (!is_array($roles)) {
             $roles = explode(self::DELIMITER, $roles);
@@ -52,29 +39,16 @@ public function handle($request, Closure $next, $roles, $permissions, $team = nu
             $permissions = explode(self::DELIMITER, $permissions);
         }
 
-        if ($this->auth->guest() ||
-             !$request->user()->ability($roles, $permissions, $team, [ 'validate_all' => $validateAll ])) {
-            return call_user_func(
-                Config::get('laratrust.middleware.handling', 'abort'),
-                Config::get('laratrust.middleware.params', '403')
-            );
+        if (
+            Auth::guard($guard)->guest()
+            || !Auth::guard($guard)->user()
+                    ->ability($roles, $permissions, $team, [
+                        'validate_all' => $validateAll
+                    ])
+         ) {
+            return $this->unauthorized();
         }
 
         return $next($request);
     }
-
-    /**
-     * Assing the real values to the team and requireAllOrOptions parameters.
-     *
-     * @param  mixed  $team
-     * @param  mixed  $requireAllOrOptions
-     * @return array
-     */
-    private function assignRealValuesTo($team, $requireAllOrOptions)
-    {
-        return [
-            ($team == 'require_all' ? null : $team),
-            ($team == 'require_all' ? true : ($requireAllOrOptions== 'require_all' ? true : false)),
-        ];
-    }
 }

src/Laratrust/Middleware/LaratrustMiddleware.php

@@ -0,0 +1,85 @@
+<?php
+
+namespace Laratrust\Middleware;
+
+use Illuminate\Support\Str;
+use Illuminate\Support\Collection;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Config;
+
+class LaratrustMiddleware
+{
+    const DELIMITER = '|';
+
+    /**
+     * Check if the request has authorization to continue.
+     *
+     * @param  string $type
+     * @param  string $rolesPermissions
+     * @param  string|null $team
+     * @param  string|null $options
+     * @return boolean
+     */
+    protected function authorization($type, $rolesPermissions, $team, $options)
+    {
+        list($team, $requireAll, $guard) = $this->assignRealValuesTo($team, $options);
+        $method = $type == 'roles' ? 'hasRole' : 'hasPermission';
+
+        if (!is_array($rolesPermissions)) {
+            $rolesPermissions = explode(self::DELIMITER, $rolesPermissions);
+        }
+
+        return !Auth::guard($guard)->guest()
+            && Auth::guard($guard)->user()->$method($rolesPermissions, $team, $requireAll);
+    }
+
+    /**
+     * The request is unauthorized, so it handles the aborting/redirecting.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    protected function unauthorized()
+    {
+        return call_user_func(
+                Config::get('laratrust.middleware.handling', 'abort'),
+                Config::get('laratrust.middleware.params', '403')
+            );
+    }
+
+    /**
+     * Generate an array with the real values of the parameters given to the middleware.
+     *
+     * @param  string $team
+     * @param  string $options
+     * @return array
+     */
+    protected function assignRealValuesTo($team, $options)
+    {
+        return [
+            (Str::contains($team, ['require_all', 'guard:']) ? null : $team),
+            (Str::contains($team, 'require_all') ?: Str::contains($options, 'require_all')),
+            (Str::contains($team, 'guard:') ? $this->extractGuard($team) : (
+                Str::contains($options, 'guard:')
+                ? $this->extractGuard($options)
+                : Config::get('auth.defaults.guard')
+            )),
+        ];
+    }
+
+    /**
+     * Extract the guard type from the given string.
+     *
+     * @param  string $string
+     * @return string
+     */
+    protected function extractGuard($string)
+    {
+        $options = Collection::make(explode('|', $string));
+
+        return $options->reject(function ($option) {
+            return strpos($option, 'guard:') === false;
+        })->map(function ($option) {
+            return explode(':', $option)[1];
+        })->first();
+    }
+}

src/Laratrust/Middleware/LaratrustPermission.php

@@ -11,63 +11,25 @@
  */
 
 use Closure;
-use Illuminate\Contracts\Auth\Guard;
-use Illuminate\Support\Facades\Config;
 
-class LaratrustPermission
+class LaratrustPermission extends LaratrustMiddleware
 {
-    const DELIMITER = '|';
-
-    protected $auth;
-
     /**
-     * Creates a new instance of the middleware.
-     *
-     * @param  Guard  $auth
-     */
-    public function __construct(Guard $auth)
-    {
-        $this->auth = $auth;
-    }
-
-    /**
-     * Handle an incoming request.
+     * Handle incoming request.
      *
      * @param  \Illuminate\Http\Request  $request
-     * @param  Closure  $next
-     * @param  $permissions
+     * @param  Closure $next
+     * @param  string  $permissions
+     * @param  string|null  $team
+     * @param  string|null  $options
      * @return mixed
      */
-    public function handle($request, Closure $next, $permissions, $team = null, $requireAll = false)
+    public function handle($request, Closure $next, $permissions, $team = null, $options = '')
     {
-        list($team, $requireAll) = $this->assignRealValuesTo($team, $requireAll);
-
-        if (!is_array($permissions)) {
-            $permissions = explode(self::DELIMITER, $permissions);
-        }
-
-        if ($this->auth->guest() || !$request->user()->hasPermission($permissions, $team, $requireAll)) {
-            return call_user_func(
-                Config::get('laratrust.middleware.handling', 'abort'),
-                Config::get('laratrust.middleware.params', '403')
-            );
+        if (!$this->authorization('permissions', $permissions, $team, $options)) {
+            return $this->unauthorized();
         }
 
         return $next($request);
     }
-
-    /**
-     * Assing the real values to the team and requireAllOrOptions parameters.
-     *
-     * @param  mixed  $team
-     * @param  mixed  $requireAllOrOptions
-     * @return array
-     */
-    private function assignRealValuesTo($team, $requireAllOrOptions)
-    {
-        return [
-            ($team == 'require_all' ? null : $team),
-            ($team == 'require_all' ? true : ($requireAllOrOptions== 'require_all' ? true : false)),
-        ];
-    }
 }

src/Laratrust/Middleware/LaratrustRole.php

@@ -11,63 +11,25 @@
  */
 
 use Closure;
-use Illuminate\Contracts\Auth\Guard;
-use Illuminate\Support\Facades\Config;
 
-class LaratrustRole
+class LaratrustRole extends LaratrustMiddleware
 {
-    const DELIMITER = '|';
-
-    protected $auth;
-
     /**
-     * Creates a new instance of the middleware.
-     *
-     * @param  Guard  $auth
-     */
-    public function __construct(Guard $auth)
-    {
-        $this->auth = $auth;
-    }
-
-    /**
-     * Handle an incoming request.
+     * Handle incoming request.
      *
      * @param  \Illuminate\Http\Request  $request
-     * @param  Closure  $next
-     * @param  $roles
+     * @param  Closure $next
+     * @param  string  $roles
+     * @param  string|null  $team
+     * @param  string|null  $options
      * @return mixed
      */
-    public function handle($request, Closure $next, $roles, $team = null, $requireAll = false)
+    public function handle($request, Closure $next, $roles, $team = null, $options = '')
     {
-        list($team, $requireAll) = $this->assignRealValuesTo($team, $requireAll);
-
-        if (!is_array($roles)) {
-            $roles = explode(self::DELIMITER, $roles);
-        }
-
-        if ($this->auth->guest() || !$request->user()->hasRole($roles, $team, $requireAll)) {
-            return call_user_func(
-                Config::get('laratrust.middleware.handling', 'abort'),
-                Config::get('laratrust.middleware.params', '403')
-            );
+        if (!$this->authorization('roles', $roles, $team, $options)) {
+            return $this->unauthorized();
         }
 
         return $next($request);
     }
-
-    /**
-     * Assing the real values to the team and requireAllOrOptions parameters.
-     *
-     * @param  mixed  $team
-     * @param  mixed  $requireAllOrOptions
-     * @return array
-     */
-    private function assignRealValuesTo($team, $requireAllOrOptions)
-    {
-        return [
-            ($team == 'require_all' ? null : $team),
-            ($team == 'require_all' ? true : ($requireAllOrOptions== 'require_all' ? true : false)),
-        ];
-    }
 }