Enhance user role management and update Filament panel middleware

- Added new user roles: operator, operator_card, operator_loan, client, and currency_maintainer in ShieldSeeder. - Included EnsureUserHasRole middleware in the Filament panel for improved access control.
2025-12-21 03:49:55 +05:00
parent b1630ea623
commit 94ad59ce24
3 changed files with 51 additions and 1 deletions
--- a/app/Http/Middleware/EnsureUserHasRole.php
+++ b/app/Http/Middleware/EnsureUserHasRole.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+class EnsureUserHasRole
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        // if user does not have any role, add role "client"
+        /** @var \App\Models\User */
+        $user = $request->user();
+
+        if ($user->roles->count() == 0) {
+            $user->assignRole('client');
+        }
+
+        return $next($request);
+    }
+}
--- a/app/Providers/Filament/WorkPanelProvider.php
+++ b/app/Providers/Filament/WorkPanelProvider.php
@@ -3,6 +3,7 @@
 namespace App\Providers\Filament;

 use App\Http\Middleware\EnsureProfileIsFilled;
+use App\Http\Middleware\EnsureUserHasRole;
 use App\Livewire\UserProfileFields;
 use App\Modules\BaseAuth\Middleware\RedirectIfUserPhoneIsUnVerfied;
 use BezhanSalleh\FilamentShield\FilamentShieldPlugin;
@@ -73,11 +74,12 @@ class WorkPanelProvider extends PanelProvider
                        UserProfileFields::class,
                    ]),

-                // FilamentUpload::make(),
+                FilamentUpload::make(),
            ])
            ->authMiddleware([
                Authenticate::class,
                EnsureProfileIsFilled::class,
+                EnsureUserHasRole::class,
            ])
            ->spa()
            ->databaseTransactions()
--- a/database/seeders/ShieldSeeder.php
+++ b/database/seeders/ShieldSeeder.php
@@ -35,6 +35,26 @@ class ShieldSeeder extends Seeder
                'name' => 'admin',
                'guard_name' => 'web',
            ],
+            [
+                'name' => 'operator',
+                'guard_name' => 'web',
+            ],
+            [
+                'name' => 'operator_card',
+                'guard_name' => 'web',
+            ],
+            [
+                'name' => 'operator_loan',
+                'guard_name' => 'web',
+            ],
+            [
+                'name' => 'client',
+                'guard_name' => 'web',
+            ],
+            [
+                'name' => 'currency_maintainer',
+                'guard_name' => 'web',
+            ],
        ])->map(fn ($role) => [
            ...$role,
            'created_at' => now(),