. * * @link https://www.librenms.org * * @copyright 2018 Tony Murray * @author Tony Murray */ namespace App\Http\Requests; use Illuminate\Foundation\Http\FormRequest; class TwoFactorManagementRequest extends FormRequest { public function rules() { return []; } public function authorize() { $user = $this->route()->parameter('user'); $auth_user = auth()->user(); // don't allow admins to bypass security for themselves return $auth_user->isAdmin() && ! $auth_user->is($user); } }