public function handle($request, Closure $next) { if ($request->user() != null && $request->user()->permissionCan($request)) { return $next($request); } abort(403); return false; }