erdum/CheckUserPermissions.php

## CheckUserPermissions.php
<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Http\Request;

use Illuminate\Support\Facades\Route;

class CheckUserPermissions
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response|\Illuminate\Http\RedirectResponse)  $next
     * @return \Illuminate\Http\Response|\Illuminate\Http\RedirectResponse
     */
    public function handle(Request $request, Closure $next)
    {
        $perms = $request->user()->role->permissions;
        $requested_route_fragments = explode('/', $request->route()->uri);

        $operation = 'view';
        $resource = null;

        foreach ($requested_route_fragments as $frag) {

            // Handle Create, Edit, Delete operations
            if (in_array($frag, array_keys($perms))) {
                $operation = $frag;
            } else if (in_array(
                $frag,
                array_column(config('app.menu_items'), 'name')
            )) {
                $resource = $frag;
            }
        }

        if (
            in_array('all', $perms[$operation])
            || in_array($resource, $perms[$operation])
        ) {
            return $next($request);
        }

        return response(
            'Operation prohibited! You don\' have the required permissions.',
            403
        );
    }
}
	<?php

	namespace App\Http\Middleware;

	use Closure;
	use Illuminate\Http\Request;

	use Illuminate\Support\Facades\Route;

	class CheckUserPermissions
	{
	/**
	* Handle an incoming request.
	*
	* @param \Illuminate\Http\Request $request
	* @param \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response\|\Illuminate\Http\RedirectResponse) $next
	* @return \Illuminate\Http\Response\|\Illuminate\Http\RedirectResponse
	*/
	public function handle(Request $request, Closure $next)
	{
	$perms = $request->user()->role->permissions;
	$requested_route_fragments = explode('/', $request->route()->uri);

	$operation = 'view';
	$resource = null;

	foreach ($requested_route_fragments as $frag) {

	// Handle Create, Edit, Delete operations
	if (in_array($frag, array_keys($perms))) {
	$operation = $frag;
	} else if (in_array(
	$frag,
	array_column(config('app.menu_items'), 'name')
	)) {
	$resource = $frag;
	}
	}

	if (
	in_array('all', $perms[$operation])
	\|\| in_array($resource, $perms[$operation])
	) {
	return $next($request);
	}

	return response(
	'Operation prohibited! You don\' have the required permissions.',
	403
	);
	}
	}