thepsion5 · September 16, 2015 20:29
diff --git a/AclMiddleware.php b/AclMiddleware.php
 <?php
 use AppName\Posts\Post;
 use Illuminate\Http\Request;

 class GenericAclMiddleware
 {
 	private $entityClasses = [
 		'post' => Post::class
 	];

 	public function handle(Request $request, $next, $permission, $entityParam = null)
 	{
 		$user = $request->user();
 		$instance = $this->getEntityInstance($entityParam);
 		if($instance) {
 			$valid = $user->can($permission, $instance);
 		} else {
 			$valid = $user->can($permission);
 		}
 		if($valid) {
 			return $next($request);
 		}
 		abort(403);
 	}

 	private function getEntityInstance($entityParam)
 	{
 		if(!$entityParam) {
 			return null;
 		}
 		$entityId = $this->route($entity);
 		if(!$entityId) {
 			return null;
 		}
 		$entityClass =  $this->entityClasses[$entity];
 		$model = new $entityClass;
 		return $modelInstance->findOrFail($entityId);
 	}
 }
diff --git a/EntityAclMiddlewareTrait.php b/EntityAclMiddlewareTrait.php
 <?php
 use Illuminate\Http\Request;

 /**
 * @property string $entityParam The route parameter containing the instance of the relevant entity
 * @property string $entityClass The class path of the relevant eloquent model
 */
 trait EntityAclMiddlewareTrait
 {
 	public function handle(Request $request, $next, $permission)
 	{
 		$user = $request->user();
 		$instance = $this->getEntityInstance($request);
 		$valid = ($instance) ? $user->can($permission, $instance) : $user->can($permission);
 		if($valid) {
 			return $next($request);
 		}
 		abort(403);
 	}
 	
 	protected function getEntityInstance(Request $request)
 	{
 		$entityId = $request->route($this->entityParam);
 		if(!$entityId) {
 			return null;
 		}
 		$class = $this->entityClass;
 		$instance = new $class();
 		return $instance->findOrFail($entityId);
 	}
 }
diff --git a/PostEntityMiddleware.php b/PostEntityMiddleware.php
 <?php
 use AppName\Posts\Post;

 class PostEntityMiddleware
 {
 	use EntityAclMiddlewareTrait;
 	
 	property $entityClass = Post::class;
 	
 	property $entityParam = 'posts';
 }
diff --git a/routes.php b/routes.php
 <?php
 Route::post('posts', [
 	'middleware' => 'acl:create-posts',
 	'uses'      => 'PostsController@store'
 ]);
 Route::put('posts/{post}', [
 	'middleware' => 'acl:update-posts,post',
 	'uses'      => 'PostsController@update'
 ]);
	<?php
	use AppName\Posts\Post;
	use Illuminate\Http\Request;

	class GenericAclMiddleware
	{
	private $entityClasses = [
	'post' => Post::class
	];

	public function handle(Request $request, $next, $permission, $entityParam = null)
	{
	$user = $request->user();
	$instance = $this->getEntityInstance($entityParam);
	if($instance) {
	$valid = $user->can($permission, $instance);
	} else {
	$valid = $user->can($permission);
	}
	if($valid) {
	return $next($request);
	}
	abort(403);
	}

	private function getEntityInstance($entityParam)
	{
	if(!$entityParam) {
	return null;
	}
	$entityId = $this->route($entity);
	if(!$entityId) {
	return null;
	}
	$entityClass = $this->entityClasses[$entity];
	$model = new $entityClass;
	return $modelInstance->findOrFail($entityId);
	}
	}
	<?php
	use Illuminate\Http\Request;

	/**
	* @property string $entityParam The route parameter containing the instance of the relevant entity
	* @property string $entityClass The class path of the relevant eloquent model
	*/
	trait EntityAclMiddlewareTrait
	{
	public function handle(Request $request, $next, $permission)
	{
	$user = $request->user();
	$instance = $this->getEntityInstance($request);
	$valid = ($instance) ? $user->can($permission, $instance) : $user->can($permission);
	if($valid) {
	return $next($request);
	}
	abort(403);
	}

	protected function getEntityInstance(Request $request)
	{
	$entityId = $request->route($this->entityParam);
	if(!$entityId) {
	return null;
	}
	$class = $this->entityClass;
	$instance = new $class();
	return $instance->findOrFail($entityId);
	}
	}
	<?php
	use AppName\Posts\Post;

	class PostEntityMiddleware
	{
	use EntityAclMiddlewareTrait;

	property $entityClass = Post::class;

	property $entityParam = 'posts';
	}
	<?php
	Route::post('posts', [
	'middleware' => 'acl:create-posts',
	'uses' => 'PostsController@store'
	]);
	Route::put('posts/{post}', [
	'middleware' => 'acl:update-posts,post',
	'uses' => 'PostsController@update'
	]);