session->has('user')) { $userSession = $this->session->get('user'); if ($userSession['authenticated']) { return $handler->handle($request); } } $response = $this->responseFactory->createResponse(403, "Unauthorized"); return $response; } }