mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
Tony Murray
7dd3a224fa
Do not allow users that are disabled to be logged in via cookie. Allow all auth methods to disable users
101 lines
3.6 KiB
PHP
101 lines
3.6 KiB
PHP
<?php
|
|
|
|
namespace App\Http;
|
|
|
|
use Illuminate\Foundation\Http\Kernel as HttpKernel;
|
|
|
|
class Kernel extends HttpKernel
|
|
{
|
|
/**
|
|
* The application's global HTTP middleware stack.
|
|
*
|
|
* These middleware are run during every request to your application.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $middleware = [
|
|
// \App\Http\Middleware\TrustHosts::class,
|
|
\App\Http\Middleware\TrustProxies::class,
|
|
\App\Http\Middleware\HandleCors::class,
|
|
\App\Http\Middleware\PreventRequestsDuringMaintenance::class,
|
|
\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
|
|
\App\Http\Middleware\TrimStrings::class,
|
|
\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
|
|
];
|
|
|
|
/**
|
|
* The application's route middleware groups.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $middlewareGroups = [
|
|
'web' => [
|
|
\App\Http\Middleware\CheckInstalled::class,
|
|
\App\Http\Middleware\EncryptCookies::class,
|
|
\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
|
|
\Illuminate\Session\Middleware\StartSession::class,
|
|
\Illuminate\Session\Middleware\AuthenticateSession::class,
|
|
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
|
|
\App\Http\Middleware\VerifyUserEnabled::class,
|
|
\App\Http\Middleware\VerifyCsrfToken::class,
|
|
\Illuminate\Routing\Middleware\SubstituteBindings::class,
|
|
],
|
|
|
|
'auth' => [
|
|
\App\Http\Middleware\LegacyExternalAuth::class,
|
|
'authenticate',
|
|
\App\Http\Middleware\VerifyTwoFactor::class,
|
|
\App\Http\Middleware\LoadUserPreferences::class,
|
|
],
|
|
|
|
'minimal' => [
|
|
\App\Http\Middleware\EncryptCookies::class,
|
|
\Illuminate\Session\Middleware\StartSession::class,
|
|
],
|
|
|
|
'api' => [
|
|
\App\Http\Middleware\EnforceJson::class,
|
|
\Illuminate\Routing\Middleware\SubstituteBindings::class,
|
|
'authenticate:token',
|
|
],
|
|
];
|
|
|
|
/**
|
|
* The application's route middleware.
|
|
*
|
|
* These middleware may be assigned to groups or used individually.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $routeMiddleware = [
|
|
'authenticate' => \App\Http\Middleware\Authenticate::class,
|
|
'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
|
|
'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
|
|
'can' => \Illuminate\Auth\Middleware\Authorize::class,
|
|
'deny-demo' => \App\Http\Middleware\DenyDemoUser::class,
|
|
'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
|
|
'password.confirm' => \Illuminate\Auth\Middleware\RequirePassword::class,
|
|
'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
|
|
'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
|
|
'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
|
|
];
|
|
|
|
/**
|
|
* The priority-sorted list of middleware.
|
|
*
|
|
* This forces non-global middleware to always be in the given order.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $middlewarePriority = [
|
|
\Illuminate\Session\Middleware\StartSession::class,
|
|
\Illuminate\View\Middleware\ShareErrorsFromSession::class,
|
|
\App\Http\Middleware\LegacyExternalAuth::class,
|
|
\App\Http\Middleware\Authenticate::class,
|
|
\Illuminate\Routing\Middleware\ThrottleRequests::class,
|
|
\Illuminate\Session\Middleware\AuthenticateSession::class,
|
|
\Illuminate\Routing\Middleware\SubstituteBindings::class,
|
|
\Illuminate\Auth\Middleware\Authorize::class,
|
|
];
|
|
}
|