firefly-iii/app/Http/Middleware/IsNotConfirmed.php

<?php
/**
 * IsNotConfirmed.php
 * Copyright (C) 2016 thegrumpydictator@gmail.com
 *
 * This software may be modified and distributed under the terms of the
 * Creative Commons Attribution-ShareAlike 4.0 International License.
 *
 * See the LICENSE file for details.
 */

declare(strict_types = 1);

namespace FireflyIII\Http\Middleware;

use Closure;
use FireflyConfig;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Log;
use Preferences;

/**
 * Class IsNotConfirmed
 *
 * @package FireflyIII\Http\Middleware
 */
class IsNotConfirmed
{
    /**
     * Handle an incoming request. User account must be confirmed for this routine to let
     * the user pass.
     *
     * @param  \Illuminate\Http\Request $request
     * @param  \Closure                 $next
     * @param  string|null              $guard
     *
     * @return mixed
     */
    public function handle(Request $request, Closure $next, $guard = null)
    {
        if (Auth::guard($guard)->guest()) {
            if ($request->ajax()) {
                return response('Unauthorized.', 401);
            }

            return redirect()->guest('login');
        }
        // must the user be confirmed in the first place?
        $mustConfirmAccount = FireflyConfig::get('must_confirm_account', config('firefly.configuration.must_confirm_account'))->data;
        Log::debug(sprintf('mustConfirmAccount is %s', $mustConfirmAccount));
        // user must be logged in, then continue:
        $isConfirmed = Preferences::get('user_confirmed', false)->data;
        Log::debug(sprintf('isConfirmed is %s', $isConfirmed));
        if ($isConfirmed || $mustConfirmAccount === false) {
            Log::debug('User is confirmed or user does not have to confirm account. Redirect home.');

            // user account is confirmed, simply send them home.
            return redirect(route('home'));
        }

        return $next($request);
    }
}