fix menu tax in data and fix session when multiple user login

app/Http/Controllers/Auth/AuthenticatedSessionController.php

@@ -37,7 +37,9 @@ class AuthenticatedSessionController extends Controller
         $user = Auth::user();
 
         // Hapus token lama jika ada
-        $user->tokens()->delete();
+        \Laravel\Sanctum\PersonalAccessToken::where('tokenable_id', $user->id)
+            ->where('tokenable_type', get_class($user))
+            ->delete();
 
         // Buat token untuk API dengan scope dan expiration
         $tokenName = config('app.name', 'Laravel') . '-' . $user->id . '-' . time();
@@ -47,6 +49,10 @@ class AuthenticatedSessionController extends Controller
         
         // Simpan token di session untuk digunakan di frontend
         session(['api_token' => $token]);
+        
+        // Simpan timestamp login untuk validasi multi-user
+        session(['login_timestamp' => now()->timestamp]);
+        session(['user_id' => $user->id]);
 
         return redirect()->intended(RouteServiceProvider::HOME);
     }
@@ -66,7 +72,9 @@ class AuthenticatedSessionController extends Controller
         }
 
         // Delete existing tokens
-        $user->tokens()->delete();
+        \Laravel\Sanctum\PersonalAccessToken::where('tokenable_id', $user->id)
+            ->where('tokenable_type', get_class($user))
+            ->delete();
 
         // Generate new token
         $tokenName = config('app.name', 'Laravel') . '-' . $user->id . '-' . time();
@@ -107,7 +115,9 @@ class AuthenticatedSessionController extends Controller
     public function destroy(Request $request)
     {
         if($request->user()){
-            $request->user()->tokens()->delete();
+            \Laravel\Sanctum\PersonalAccessToken::where('tokenable_id', $request->user()->id)
+                ->where('tokenable_type', get_class($request->user()))
+                ->delete();
         }
 
         Auth::guard('web')->logout();