mirror of
https://github.com/firefly-iii/firefly-iii.git
synced 2024-12-28 09:51:21 -06:00
89 lines
2.1 KiB
PHP
89 lines
2.1 KiB
PHP
<?php
|
|
|
|
|
|
|
|
App::before(
|
|
function ($request) {
|
|
|
|
if (Auth::check()) {
|
|
$toolkit = App::make('Firefly\Helper\Toolkit\ToolkitInterface');
|
|
return $toolkit->getDateRange($request);
|
|
}
|
|
|
|
}
|
|
);
|
|
|
|
App::after(
|
|
function ($request, $response) {
|
|
//
|
|
}
|
|
);
|
|
|
|
/*
|
|
|--------------------------------------------------------------------------
|
|
| Authentication Filters
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
| The following filters are used to verify that the user of the current
|
|
| session is logged into this application. The "basic" filter easily
|
|
| integrates HTTP Basic authentication for quick, simple checking.
|
|
|
|
|
*/
|
|
|
|
Route::filter(
|
|
'auth', function () {
|
|
if (Auth::guest()) {
|
|
if (Request::ajax()) {
|
|
return Response::make('Unauthorized', 401);
|
|
} else {
|
|
return Redirect::guest('login');
|
|
}
|
|
}
|
|
}
|
|
);
|
|
|
|
|
|
Route::filter(
|
|
'auth.basic', function () {
|
|
return Auth::basic();
|
|
}
|
|
);
|
|
|
|
/*
|
|
|--------------------------------------------------------------------------
|
|
| Guest Filter
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
| The "guest" filter is the counterpart of the authentication filters as
|
|
| it simply checks that the current user is not logged in. A redirect
|
|
| response will be issued if they are, which you may freely change.
|
|
|
|
|
*/
|
|
|
|
Route::filter(
|
|
'guest', function () {
|
|
if (Auth::check()) {
|
|
return Redirect::to('/');
|
|
}
|
|
}
|
|
);
|
|
|
|
/*
|
|
|--------------------------------------------------------------------------
|
|
| CSRF Protection Filter
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
| The CSRF filter is responsible for protecting your application against
|
|
| cross-site request forgery attacks. If this special token in a user
|
|
| session does not match the one given in this request, we'll bail.
|
|
|
|
|
*/
|
|
|
|
Route::filter(
|
|
'csrf', function () {
|
|
if (Session::token() != Input::get('_token')) {
|
|
throw new Illuminate\Session\TokenMismatchException;
|
|
}
|
|
}
|
|
);
|