ricardogj08
/
inventario-castores


			
				
					
						
						
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071
							<?php

namespace App\Filters;

use App\Models\UserModel;
use CodeIgniter\Filters\FilterInterface;
use CodeIgniter\HTTP\RequestInterface;
use CodeIgniter\HTTP\ResponseInterface;

// Valida si un usuario está autenticado.
class AuthFilter implements FilterInterface
{
    /**
     * Do whatever processing this filter needs to do.
     * By default it should not return anything during
     * normal execution. However, when an abnormal state
     * is found, it should return an instance of
     * CodeIgniter\HTTP\Response. If it does, script
     * execution will end and that Response will be
     * sent back to the client, allowing for error pages,
     * redirects, etc.
     *
     * @param array|null $arguments
     *
     * @return RequestInterface|ResponseInterface|string|void
     */
    public function before(RequestInterface $request, $arguments = null)
    {
        // Obtiene la cookie del usuario autenticado.
        $cookie = request()->getCookie('userAuth');

        if (empty($cookie)) {
            return redirect()->route('auth.loginView')
                ->with('warning', 'Ingresa tus credenciales de acceso');
        }

        $userModel = model(UserModel::class);

        // Consulta la información del usuario autenticado.
        $userAuth = $userModel->select('usuarios.idUsuario, usuarios.nombre, roles.nombre AS rol')
            ->role()
            ->where('usuarios.estatus', 1)
            ->find($cookie);

        // Roles permitidos en la aplicación.
        $allowedRoles = ['Administrador', 'Almacenista'];

        if (empty($userAuth) || ! in_array($userAuth['rol'], $allowedRoles, true)) {
            return redirect()->route('auth.loginView')
                ->with('error', 'Acceso denegado al sistema');
        }

        // Almacena la información del usuario durante la sesión.
        session()->set('userAuth', $userAuth);
    }

    /**
     * Allows After filters to inspect and modify the response
     * object as needed. This method does not allow any way
     * to stop execution of other after filters, short of
     * throwing an Exception or Error.
     *
     * @param array|null $arguments
     *
     * @return ResponseInterface|void
     */
    public function after(RequestInterface $request, ResponseInterface $response, $arguments = null)
    {
    }
}