middleware('guest')->except('logout'); } // We can't customise the error message, since that would imply overriding the login method, which is large. // Also, the user should never know that they're banned. public function attemptLogin(Request $request) { $user = User::where('email', $request->email)->first(); if ($user) { $isBanned = $user->isBanned(); if ($isBanned) { return false; } else { return $this->originalAttemptLogin($request); } } return $this->originalAttemptLogin($request); } }