<?php namespace App\Http\Middleware;

use Closure;

class isAuthorized {

	/**
	 * Handle an incoming request.
	 *
	 * @param  \Illuminate\Http\Request  $request
	 * @param  \Closure  $next
	 * @return mixed
	 */
	public function handle($request, Closure $next)
	{
		$token = $request->header('token') ?? (getallheaders()['token'] ?? null);
		if ($token && $token === config('app.api_token')) {
			return $next($request);
		}
		return response()->json(['status' => false, 'error' => 'Invalid request'], 401);
	}

}