From deacd0dfc195bca41af631114804d29937337cd8 Mon Sep 17 00:00:00 2001
From: nsfisis <nsfisis@gmail.com>
Date: Wed, 17 Jan 2024 02:11:31 +0900
Subject: .

---
 .../src/Middlewares/AdminRequiredMiddleware.php    | 43 ++++++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 services/app/src/Middlewares/AdminRequiredMiddleware.php

(limited to 'services/app/src/Middlewares/AdminRequiredMiddleware.php')

diff --git a/services/app/src/Middlewares/AdminRequiredMiddleware.php b/services/app/src/Middlewares/AdminRequiredMiddleware.php
new file mode 100644
index 0000000..dc81b42
--- /dev/null
+++ b/services/app/src/Middlewares/AdminRequiredMiddleware.php
@@ -0,0 +1,43 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Nsfisis\Albatross\Middlewares;
+
+use LogicException;
+use Nsfisis\Albatross\Models\User;
+use Psr\Http\Message\ResponseFactoryInterface;
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+use Psr\Http\Server\MiddlewareInterface;
+use Psr\Http\Server\RequestHandlerInterface;
+use Slim\App;
+
+final class AdminRequiredMiddleware implements MiddlewareInterface
+{
+    private function __construct(
+        private readonly ResponseFactoryInterface $responseFactory,
+    ) {
+    }
+
+    public static function create(App $app): self
+    {
+        return new self($app->getResponseFactory());
+    }
+
+    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
+    {
+        $current_user = $request->getAttribute('current_user');
+        if (!$current_user instanceof User) {
+            throw new LogicException('The route that has this middleware must have the CurrentUserMiddleware before this one');
+        }
+
+        if (!$current_user->is_admin) {
+            $response = $this->responseFactory->createResponse(403);
+            $response->getBody()->write('Forbidden');
+            return $response->withHeader('Content-Type', 'text/plain');
+        }
+
+        return $handler->handle($request);
+    }
+}
-- 
cgit v1.2.3-70-g09d2