user = $user; } /** * Determine if the validation rule passes. * * @param string $attribute * @param mixed $value * @return bool */ public function passes($attribute, $value) { // Option is off //return true; if (! config('access.users.password_history')) { return true; } if (! $this->user instanceof User) { if (is_numeric($this->user)) { $this->user = resolve(BackendUserRepository::class)->getById($this->user); } else { $this->user = resolve(FrontendUserRepository::class)->findByPasswordResetToken($this->user); } } if (! $this->user || null === $this->user) { return false; } $histories = $this->user ->passwordHistories() ->take(config('access.users.password_history')) ->orderBy('id', 'desc') ->get(); foreach ($histories as $history) { if (Hash::check($value, $history->password)) { return false; } } return true; } /** * Get the validation error message. * * @return string */ public function message() { return __('auth.password_used'); } }