[ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, ], // MUST NOT be logged in. Does not care about 2FA or confirmation. 'user-not-logged-in' => [ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, RedirectIfAuthenticated::class, ], // MUST be logged in. // MUST NOT have 2FA // don't care about confirmation: 'user-logged-in-no-2fa' => [ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, Authenticate::class, RedirectIfTwoFactorAuthenticated::class, ], // MUST be logged in // don't care about 2fa // don't care about confirmation. 'user-simple-auth' => [ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, Authenticate::class, ], // MUST be logged in // MUST have 2fa // MUST be confirmed. // (this group includes the other Firefly middleware) 'user-full-auth' => [ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, Authenticate::class, AuthenticateTwoFactor::class, Range::class, Binder::class, ], // MUST be logged in // MUST have 2fa // MUST be confirmed. // MUST have owner role // (this group includes the other Firefly middleware) 'admin' => [ Sandstorm::class, EncryptCookies::class, AddQueuedCookiesToResponse::class, StartSession::class, ShareErrorsFromSession::class, VerifyCsrfToken::class, SubstituteBindings::class, Authenticate::class, AuthenticateTwoFactor::class, IsAdmin::class, Range::class, Binder::class, ], 'api' => [ 'throttle:60,1', 'bindings', ], ]; /** * The application's route middleware. * * These middleware may be assigned to groups or used individually. * * @var array */ protected $routeMiddleware = [ 'auth' => Authenticate::class, 'auth.basic' => AuthenticateWithBasicAuth::class, 'bindings' => SubstituteBindings::class, 'can' => Authorize::class, 'guest' => RedirectIfAuthenticated::class, 'throttle' => ThrottleRequests::class, ]; }