name('login'); Route::get('/admin/login', [LoginController::class, 'showAdminLoginForm'])->name('admin.login'); Route::post('/admin/login', [LoginController::class, 'adminLogin'])->name('admin.login.submit'); Route::post('/logout', [LoginController::class, 'logout'])->name('logout'); Route::get('/logout', [LoginController::class, 'logout']); // For ease of development/testing via GET // Microsoft OAuth endpoints Route::get('/auth/microsoft/redirect', [LoginController::class, 'redirectToMicrosoft'])->name('auth.microsoft.redirect'); Route::get('/auth/microsoft/callback', [LoginController::class, 'handleMicrosoftCallback'])->name('auth.microsoft.callback'); Route::get('/auth/microsoft/logout', [LoginController::class, 'frontChannelLogout'])->name('auth.microsoft.logout'); // User Dashboard Portal (requires standard user role or admin access) Route::middleware(['auth', 'role:user', 'verify-ms-session'])->group(function () { Route::get('/dashboard', [DashboardController::class, 'index'])->name('dashboard'); }); Route::middleware(['auth', 'role:user'])->group(function () { Route::get('/sso/launch/{id}', [DashboardController::class, 'launchSSO'])->name('sso.launch'); Route::get('/sso/callback', [DashboardController::class, 'handleSSOCallback'])->name('sso.callback'); Route::get('/sso/launch-app', [DashboardController::class, 'launchApp'])->name('sso.launch-app'); }); // Admin Control Panel (requires admin role) Route::middleware(['auth', 'role:admin'])->group(function () { Route::get('/admin/dashboard', [AdminController::class, 'index'])->name('admin.dashboard')->middleware('verify-ms-session'); Route::post('/admin/apps', [AdminController::class, 'storeApp'])->name('admin.apps.store'); Route::post('/admin/apps/{id}/update', [AdminController::class, 'updateApp'])->name('admin.apps.update'); Route::delete('/admin/apps/{id}', [AdminController::class, 'destroyApp'])->name('admin.apps.destroy'); Route::post('/admin/users/{id}/toggle-block', [AdminController::class, 'toggleBlockUser'])->name('admin.users.toggle-block'); // Roles CRUD Route::post('/admin/roles', [AdminController::class, 'storeRole'])->name('admin.roles.store'); Route::post('/admin/roles/{id}/update', [AdminController::class, 'updateRole'])->name('admin.roles.update'); Route::delete('/admin/roles/{id}', [AdminController::class, 'destroyRole'])->name('admin.roles.destroy'); // User Roles & Overrides Route::post('/admin/users/{id}/roles', [AdminController::class, 'updateUserRoles'])->name('admin.users.roles.update'); Route::post('/admin/overrides', [AdminController::class, 'storeUserOverride'])->name('admin.overrides.store'); Route::delete('/admin/overrides/{id}', [AdminController::class, 'destroyUserOverride'])->name('admin.overrides.destroy'); });