public function render(Request $request) { if (!$request->getAttribute('session')->get('user_id')) { throw new PermissionDeniedException(); } return parent::render($request); }