From 0b63876e299721d59937882efde74bb96e3fd2ed Mon Sep 17 00:00:00 2001
From: David Bomba <turbo124@gmail.com>
Date: Thu, 28 Nov 2024 11:42:23 +1100
Subject: [PATCH] Improve contact register resiliency

---
 app/Http/Controllers/Auth/ContactRegisterController.php | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/app/Http/Controllers/Auth/ContactRegisterController.php b/app/Http/Controllers/Auth/ContactRegisterController.php
index 0daf8d692a..ee9a813421 100644
--- a/app/Http/Controllers/Auth/ContactRegisterController.php
+++ b/app/Http/Controllers/Auth/ContactRegisterController.php
@@ -58,6 +58,13 @@ class ContactRegisterController extends Controller
 
     public function register(RegisterRequest $request)
     {
+        
+        $company = $request->company();
+
+        if (! $company->client_can_register) {
+            abort(403, 'This page is restricted');
+        }
+
         $request->merge(['company' => $request->company()]);
 
         $service = new ClientRegisterService(