isLoggedIn()) { return redirect(route('login'))->with('error', 'Please login to access your dashboard.'); } $username = session('username'); $role = session('role'); $user = UserHelper::getUserByUsername($username); if (!$user) { return redirect(route('index'))->with('error', 'Invalid or disabled account.'); } return view('admin', [ 'role' => $role, 'admin_role' => UserHelper::$USER_ROLES['admin'], 'user_roles' => UserHelper::$USER_ROLES, 'api_key' => $user->api_key, 'api_active' => $user->api_active, 'api_quota' => $user->api_quota, 'user_id' => $user->id ]); } public function changePassword(Request $request) { if (!$this->isLoggedIn()) { return abort(404); } $username = session('username'); $old_password = $request->input('current_password'); $new_password = $request->input('new_password'); if (UserHelper::checkCredentials($username, $old_password) == false) { // Invalid credentials return redirect('admin')->with('error', 'Current password invalid. Try again.'); } else { // Credentials are correct $user = UserHelper::getUserByUsername($username); $user->password = Hash::make($new_password); $user->save(); $request->session()->flash('success', "Password changed successfully."); return redirect(route('admin')); } } }