From 1da54d43f425006056f7c1509413e661a6900bf1 Mon Sep 17 00:00:00 2001
From: ygbanzato <ygbanzato@isptgroup.com>
Date: Wed, 26 Apr 2023 15:21:41 +0100
Subject: [PATCH] Creating routes based on user_type and permissions to access
 routes

---
 app/Http/Controllers/userController.php       | 37 +++++++++++++++++++
 app/Http/Kernel.php                           |  2 +
 app/Http/Middleware/CheckSuperAdmin.php       | 25 +++++++++++++
 .../Middleware/RedirectIfAuthenticated.php    | 20 +++++++++-
 app/Providers/RouteServiceProvider.php        |  5 +++
 .../views/Templates/templateAdmin.blade.php   | 11 +++++-
 routes/web.php                                | 13 ++++++-
 7 files changed, 110 insertions(+), 3 deletions(-)
 create mode 100644 app/Http/Controllers/userController.php
 create mode 100644 app/Http/Middleware/CheckSuperAdmin.php

diff --git a/app/Http/Controllers/userController.php b/app/Http/Controllers/userController.php
new file mode 100644
index 00000000..4b6f7f42
--- /dev/null
+++ b/app/Http/Controllers/userController.php
@@ -0,0 +1,37 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Support\Facades\Hash;
+
+
+use Illuminate\Http\Request;
+use Laravel\Fortify\Contracts\LoginResponse as LoginResponseContract;
+use Laravel\Fortify\Contracts\LogoutResponse as LogoutResponseContract;
+use Laravel\Fortify\Fortify;
+use Laravel\Fortify\Http\Controllers\AuthenticatedSessionController as FortifyAuthenticatedSessionController;
+
+
+
+use App\Models\User;
+
+class userController extends Controller
+{
+
+    public function authenticate(Request $request)
+    {
+        $request->validate([
+            Fortify::username() => 'required|string',
+            'password' => 'required|string',
+        ]);
+    
+        $user = User::where('email', $request->email)->first();
+    
+        if ($user && Hash::check($request->password, $user->password)) {
+            return $user;
+        }
+    
+        return null;
+    }
+    
+}
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index 1fb53dce..cc45f63c 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -53,6 +53,7 @@ class Kernel extends HttpKernel
      * @var array<string, class-string|string>
      */
     protected $middlewareAliases = [
+        'checksuperadmin' => \App\Http\Middleware\CheckSuperAdmin::class,
         'auth' => \App\Http\Middleware\Authenticate::class,
         'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
         'auth.session' => \Illuminate\Session\Middleware\AuthenticateSession::class,
@@ -63,5 +64,6 @@ class Kernel extends HttpKernel
         'signed' => \App\Http\Middleware\ValidateSignature::class,
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
+
     ];
 }
diff --git a/app/Http/Middleware/CheckSuperAdmin.php b/app/Http/Middleware/CheckSuperAdmin.php
new file mode 100644
index 00000000..febe6663
--- /dev/null
+++ b/app/Http/Middleware/CheckSuperAdmin.php
@@ -0,0 +1,25 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+class CheckSuperAdmin
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        if (auth()->user() && auth()->user()->user_type == 'Super_Admin') {
+            return $next($request);
+        }
+    
+        return abort(403, 'Acesso não autorizado.');
+        // return $next($request);
+    }
+}
diff --git a/app/Http/Middleware/RedirectIfAuthenticated.php b/app/Http/Middleware/RedirectIfAuthenticated.php
index afc78c4e..f5e7ba29 100644
--- a/app/Http/Middleware/RedirectIfAuthenticated.php
+++ b/app/Http/Middleware/RedirectIfAuthenticated.php
@@ -19,9 +19,27 @@ public function handle(Request $request, Closure $next, string ...$guards): Resp
     {
         $guards = empty($guards) ? [null] : $guards;
 
+        // foreach ($guards as $guard) {
+        //     if (Auth::guard($guard)->check()) {
+        //         return redirect(RouteServiceProvider::HOME);
+        //     }
+        // }
+
         foreach ($guards as $guard) {
             if (Auth::guard($guard)->check()) {
-                return redirect(RouteServiceProvider::HOME);
+                $user = Auth::guard($guard)->user();
+    
+                switch ($user->user_type) {
+                    case 'Cliente':
+                        return redirect(RouteServiceProvider::CLIENTE);
+                    case 'Tecnicos':
+                        return redirect(RouteServiceProvider::TECNICO);
+                    case 'inspetor':
+                        return redirect(RouteServiceProvider::INSPETOR);
+                    // Adicione outros tipos de usuário e suas rotas aqui
+                    default:
+                        return redirect(RouteServiceProvider::HOME);
+                }
             }
         }
 
diff --git a/app/Providers/RouteServiceProvider.php b/app/Providers/RouteServiceProvider.php
index 1a05c37d..23f6cbc2 100644
--- a/app/Providers/RouteServiceProvider.php
+++ b/app/Providers/RouteServiceProvider.php
@@ -19,6 +19,11 @@ class RouteServiceProvider extends ServiceProvider
      */
     public const HOME = '/';
 
+    // public const HOME = '/home';
+    public const CLIENTE = '/cliente';
+    public const TECNICO = '/Tecnicos';
+    public const INSPETOR = '/inspetor';
+
     /**
      * Define your route model bindings, pattern filters, and other route configuration.
      */
diff --git a/resources/views/Templates/templateAdmin.blade.php b/resources/views/Templates/templateAdmin.blade.php
index 01ca1653..26cb1dbb 100644
--- a/resources/views/Templates/templateAdmin.blade.php
+++ b/resources/views/Templates/templateAdmin.blade.php
@@ -121,7 +121,7 @@ class="fas fa-bars"></i></a>
                         <li class="nav-item">
                             <form method="POST" action="{{ route('logout') }}">
                                 @csrf
-                                <button type="submit" class="btn btn-link">Logout</button>
+                                <button type="submit" class="nav-link active">Logout</button>
                             </form>
                             {{-- <a href="{{route('logout')}}" class="nav-link active">
                                 <i class="nav-icon fas fa-tachometer-alt"></i>
@@ -140,6 +140,15 @@ class="fas fa-bars"></i></a>
                             </a>
                         </li>
 
+                        <li class="nav-item">
+                            <a href="{{ route('test') }}" class="nav-link active">
+                                <i class="nav-icon fas fa-tachometer-alt"></i>
+                                <p>
+                                    TestController
+                                </p>
+                            </a>
+                        </li>
+
 
                         <li class="nav-item">
                             <a href="#" class="nav-link">
diff --git a/routes/web.php b/routes/web.php
index 11b45520..6afc82d9 100644
--- a/routes/web.php
+++ b/routes/web.php
@@ -16,6 +16,8 @@
 use App\Http\Controllers\NewPasswordController;
 use App\Http\Controllers\Auth\PasswordResetLinkController;
 
+use App\Http\Controllers\userController;
+
 
 
 /*
@@ -40,6 +42,15 @@
     })->name('formulario');
 });
 
+
+Route::middleware(['auth', 'verified', 'checksuperadmin'])->group(function () {
+    // Rotas protegidas que exigem verificação de e-mail e user_type Super_Admin
+    Route::get('formulario', function () {
+        return view('email/formAdmin');
+    })->name('formulario');
+});
+
+
 // Rota responsavel por enviar o formulario 
 Route::post('enviar-formulario', [FormController::class, 'enviarEmail'])->name('enviar.formulario');
 
@@ -47,7 +58,7 @@
     return view('email/createUser');
 });
 
-
+Route::get('test', [userController::class,'test'])->name('test');