<?php

namespace App\Http\Middleware;

use Illuminate\Auth\AuthenticationException;
use Laravel\Passport\Exceptions\MissingScopeException;
use Laravel\Passport\Scope;
use \Laravel\Passport\Http\Middleware\CheckForAnyScope AS PassportCheckForAnyScope;
use Illuminate\Support\Facades\Auth;
class CheckPermissions
{
    /**
     * Handle the incoming request.
     *
     * @param  \Illuminate\Http\Request  $request
     * @param  \Closure  $next
     * @param  mixed  ...$scopes
     * @return \Illuminate\Http\Response
     *
     * @throws \Illuminate\Auth\AuthenticationException|\Laravel\Passport\Exceptions\MissingScopeException
     */
    public function handle($request, $next, ...$permissions)
    {

      if($request->user()->hasRole('Super Admin')) return $next($request);
      try {
        if ($request->user()->hasAnyPermission($permissions)) {
            return $next($request);
        }
      }
      catch(Exception $e) {
        throw new AuthenticationException('Invalid scope(s) provided.');
      }
      // foreach ($permissions as $permission) {
      //   try {
      //     if ($request->user()->hasAnyPermission($permission)) {
      //         return $next($request);
      //     }
      //   }
      //   catch(Exception $e) {
      //     throw new AuthenticationException('Invalid scope(s) provided.');
      //   }
      // }
      // if ($request->user()->hasAnyPermission($scopes)) {
      //     return $next($request);
      // }
      throw new AuthenticationException('Invalid scope(s) provided.');
    }
}