<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Http\Request;
use Symfony\Component\HttpFoundation\Response;

class RoleMiddleware
{
    /**
     * Handle an incoming request.
     * Penggunaan: Route::middleware('role:admin')
     */
    public function handle(Request $request, Closure $next, string $role): Response
    {
        if (! auth()->check()) {
            return redirect()->route('login');
        }

        if (auth()->user()->role !== $role) {
            // Jika user biasa mencoba akses halaman admin
            abort(403, 'Akses ditolak. Halaman ini hanya untuk ' . ($role === 'admin' ? 'Ahli Tanaman' : 'Petani') . '.');
        }

        return $next($request);
    }
}