Laravel-permission: Redirect Page Help

Created on 29 Dec 2018 · 4Comments · Source: spatie/laravel-permission

I am having problem with 5.7 authentication,

super-admin, admin, members have the same login and after logged in it redirect to different routes.
The super-admin and admin have the same redirect. So I put this code.

app\Http\Controllers\Auth\LoginController.php

protected function authenticated(Request $request, $user)
{
    if ( $user->hasAnyRole(['super-admin', 'admin']) ) {// do your margic here
        return redirect()->route('admin.dashboard');
    }

     return redirect('/home');
}

and then this is my routes/web.php

Auth::routes();
Route::group(['middleware' => ['role:member']], function () {
    Route::get('/', 'HomeController@index')->name('home');
});
Route::group(['middleware' => ['role:super-admin|admin'], 'prefix' => 'admin'], function () {
    Route::get('/', 'Admin\HomeController@dashboard')->name('admin.dashboard');
});

After login, what I want to do is when a super-admin/admin visit the site.com/* it should redirect to site.com/admin/ cause he is not authorize and also when visiting member visit the site.com/admin/*, he redirect to site.com/, the rest will go to login page when not authenticated.

It displays like this, I don't know where to add the redirect code

It should redirect based on their role homepage instead display 403 error.

support

Source

jeraldpunx

👍2

Most helpful comment

I've just recreated your app, based on what you posted here, and it works fine, even with the authenticated() instead of redirectTo().

Login as Member = redirects to /
Login as Admin = redirects to /admin
(There are other cases not covered here, such as what to do when the user from the wrong role is logged in and tries to go to the unauthorized route, but that's beyond the scope of what you posted about here.)

Here's the entire code, with commits split out for reference: https://github.com/drbyte/permtesting-jpunx/commits/master

Hopefully it'll help you find what else is interfering from within your app.

drbyte on 2 Jan 2019

👍2 ❤1

All 4 comments

Instead of overriding authenticated, shouldn't you be doing it with redirectTo()?

Something like:

    /**
     * determine the redirect URL after login
     *
     * @param  \Illuminate\Http\Request $request
     * @return string
     */
    protected function redirectTo(Request $request)
    {
        if ( $request->user()->hasAnyRole(['super-admin', 'admin']) ) {
            return route('admin.dashboard');
        }

        return '/home';
    }

drbyte on 29 Dec 2018

👍2 ❤1

@jeraldpunx
besides the route naming and redirection url dont match:

return redirect('/home');

and

Route::group(['middleware' => ['role:member']], function () {
    Route::get('/', 'HomeController@index')->name('home');
});

mobayen on 31 Dec 2018

What's the difference between these two though? It seems still go the same result though.

jeraldpunx on 1 Jan 2019

I've just recreated your app, based on what you posted here, and it works fine, even with the authenticated() instead of redirectTo().

Login as Member = redirects to /
Login as Admin = redirects to /admin
(There are other cases not covered here, such as what to do when the user from the wrong role is logged in and tries to go to the unauthorized route, but that's beyond the scope of what you posted about here.)

Here's the entire code, with commits split out for reference: https://github.com/drbyte/permtesting-jpunx/commits/master

Hopefully it'll help you find what else is interfering from within your app.

drbyte on 2 Jan 2019

👍2 ❤1

Was this page helpful?

0 / 5 - 0 ratings