diff --git a/app/Http/Middleware/RestrictedAccess.php b/app/Http/Middleware/RestrictedAccess.php
new file mode 100644
index 000000000..b88c838be
--- /dev/null
+++ b/app/Http/Middleware/RestrictedAccess.php
@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Support\Facades\Auth;
+
+class RestrictedAccess
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param \Illuminate\Http\Request $request
+     * @param \Closure                 $next
+     * @param string|null              $guard
+     *
+     * @return mixed
+     */
+    public function handle($request, Closure $next, $guard = null)
+    {
+        if(config('instance.restricted.enabled')) {
+            if (!Auth::guard($guard)->check()) {
+                $p = ['login', 'password*', 'loginAs*'];
+                if(!$request->is($p)) {
+                    return redirect('/login');
+                }
+            }
+        }
+
+        return $next($request);
+    }
+}