added middleware to authenticate access to admin and mod views, plus seperated a few controllers

app/Http/Controllers/AdminController.php

@@ -13,7 +13,7 @@ class AdminController extends Controller
 {
     public function __construct()
     {
-        $this->middleware('auth');
+        $this->middleware(['auth', 'is.admin']);
     }
 
     public function index()

app/Http/Controllers/AdministrativeTestController.php

@@ -0,0 +1,121 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Auth;
+use App\Http\Requests;
+use App\Test;
+use App\Question;
+use App\Option;
+use App\Group;
+use App\Http\Requests\StoreTest;
+use App\Http\Requests\StoreQuestion;
+
+class AdministrativeTestController extends Controller
+{
+    public function __construct()
+    {
+        $this->middleware(['auth', 'is.admin.mod']);
+    }
+
+    /**
+     *
+     * Common controller functions between moderators and administrators for handling tests and associated questions
+     *
+     */
+    public function addTest(StoreTest $request)
+    {
+        $test = new Test();
+        $test->createTest($request->all());
+        return redirect("/admin/tests/$test->id");
+    }
+
+    public function confirmDeleteTest(Test $test)
+    {
+        return view('tests.delete', compact('test'));
+    }
+
+    public function confirmDeleteQuestion(Question $question)
+    {
+        return view('tests.question.delete', compact('question'));
+    }
+
+    public function deleteQuestion(Question $question)
+    {
+        $test = $question->test;
+        $question->deleteQuestion();
+        return redirect("/admin/tests/$test->id");
+    }
+
+    public function deleteTest(Test $test)
+    {
+        $test->deleteTest();
+        return redirect('/admin/tests');
+    }
+
+    public function editQuestion(Question $question)
+    {
+        $options = $question->options;
+        return view('tests.question.edit', compact('question'), compact('options'));
+    }
+
+    public function newQuestion(Test $test)
+    {
+        $question_number = $test->nextQuestionNumber();
+        return view('tests.question.new', compact('test'), compact('question_number'));
+    }
+
+    public function updateTest(Test $test, StoreTest $request)
+    {
+        $test->updateTest($request->all());
+        return redirect("/admin/tests/$test->id");
+    }
+
+    public function showTest(Test $test)
+    {
+        $questions = $test->questions;
+        return view('tests.show', compact('test'), compact('questions'));
+    }
+
+    public function newTest()
+    {
+        if (Auth::user()->isAdministrator()) {
+            $groups = Group::all();
+            return view('tests.new', compact('groups'));
+        }
+        return view('tests.new');
+    }
+
+    public function editTest(Test $test)
+    {
+        if (Auth::user()->isAdministrator()) {
+            $groups = Group::all();
+            return view('tests.edit', compact('test'), compact('groups'));
+        }
+        return view('tests.edit', compact('test'));
+    }   
+
+    public function addQuestion(Test $test, StoreQuestion $request)
+    {
+        $question = new Question;
+        $question->addQuestion($test, $request);
+        foreach ($request["options"] as $optionData) {
+            $option = new Option;
+            $option->addOption($question, $optionData);
+        }
+        return redirect("/admin/tests/$test->id");
+    }
+
+    public function updateQuestion(Question $question, StoreQuestion $request)
+    {
+        $test = $question->test;
+        $question->updateQuestion($request);
+        $options = $question->options;
+        $optionsData = $request["options"];
+        foreach ($options as $key => $option) {
+            $option->updateOption($optionsData[$key+1]);
+        }
+        return redirect("/admin/tests/$test->id");
+    }
+}

app/Http/Controllers/AdministrativeUserController.php

@@ -9,11 +9,11 @@ use App\Http\Requests\StoreUser;
 use App\User;
 use App\Group;
 
-class UserController extends Controller
+class AdministrativeUserController extends Controller
 {
     public function __construct()
     {
-        $this->middleware('auth');
+        $this->middleware(['auth', 'is.admin.mod']);
     }
 
     /**

app/Http/Controllers/ModeratorController.php

@@ -10,7 +10,7 @@ class ModeratorController extends Controller
 {
     public function __construct()
     {
-        $this->middleware('auth');
+        $this->middleware(['auth', 'is.mod']);
     }
 
     public function index()

app/Http/Controllers/TestController.php

@@ -15,6 +15,11 @@ use App\Http\Requests\StoreQuestion;
 
 class TestController extends Controller
 {
+    public function __construct()
+    {
+        $this->middleware('auth');
+    }
+
     public function startTest(Test $test)
     {
         if (null !== session("start_time") && session("time_limit") !== 0 && session("start_time")+session("time_limit") > time()) {
@@ -123,106 +128,4 @@ class TestController extends Controller
         $test->sessionPurge();
         return redirect("/home");
     }
-
-    /**
-     *
-     * Common controller functions between moderators and administrators for handling tests and associated questions
-     *
-     */
-
-    public function addTest(StoreTest $request)
-    {
-        $test = new Test();
-        $test->createTest($request->all());
-        return redirect("/admin/tests/$test->id");
-    }
-
-    public function confirmDeleteTest(Test $test)
-    {
-        return view('tests.delete', compact('test'));
-    }
-
-    public function confirmDeleteQuestion(Question $question)
-    {
-        return view('tests.question.delete', compact('question'));
-    }
-
-    public function deleteQuestion(Question $question)
-    {
-        $test = $question->test;
-        $question->deleteQuestion();
-        return redirect("/admin/tests/$test->id");
-    }
-
-    public function deleteTest(Test $test)
-    {
-        $test->deleteTest();
-        return redirect('/admin/tests');
-    }
-
-    public function editQuestion(Question $question)
-    {
-        $options = $question->options;
-        return view('tests.question.edit', compact('question'), compact('options'));
-    }
-
-    public function newQuestion(Test $test)
-    {
-        $question_number = $test->nextQuestionNumber();
-        return view('tests.question.new', compact('test'), compact('question_number'));
-    }
-
-    public function updateTest(Test $test, StoreTest $request)
-    {
-        $test->updateTest($request->all());
-        return redirect("/admin/tests/$test->id");
-    }
-
-    public function showTest(Test $test)
-    {
-        $questions = $test->questions;
-        return view('tests.show', compact('test'), compact('questions'));
-    }
-
-    public function newTest()
-    {
-        if (Auth::user()->isAdministrator()) {
-            $groups = Group::all();
-            return view('tests.new', compact('groups'));
-        }
-        return view('tests.new');
-    }
-
-    public function editTest(Test $test)
-    {
-        if (Auth::user()->isAdministrator()) {
-            $groups = Group::all();
-            return view('tests.edit', compact('test'), compact('groups'));
-        }
-        return view('tests.edit', compact('test'));
-    }   
-
-    public function addQuestion(Test $test, StoreQuestion $request)
-    {
-        $question = new Question;
-        $question->addQuestion($test, $request);
-        foreach ($request["options"] as $optionData) {
-            $option = new Option;
-            $option->addOption($question, $optionData);
-        }
-        return redirect("/admin/tests/$test->id");
-    }
-
-    public function updateQuestion(Question $question, StoreQuestion $request)
-    {
-        $test = $question->test;
-        $question->updateQuestion($request);
-        $options = $question->options;
-        $optionsData = $request["options"];
-        foreach ($options as $key => $option) {
-            $option->updateOption($optionsData[$key+1]);
-        }
-        return redirect("/admin/tests/$test->id");
-    }
-    
 }