Initial Commit
This commit is contained in:
dann4624
@@ -0,0 +1,128 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Brand;
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class BrandPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @param Brand $Brand
|
||||
* @param User $model
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @param Brand $Brand
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @param Brand $Brand
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @param Brand $Brand
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @param Brand $Brand
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','brands_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,123 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Building;
|
||||
use App\Models\Permission;
|
||||
use App\Models\Room;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class BuildingPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','buildings_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,121 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\CabelCategory;
|
||||
use App\Models\Permission;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class CabelCategoryPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabelCategories_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,146 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Cabel;
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class CabelPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete_force(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can add to the pool.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function amount_add()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_amount_add'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can remove from the pool.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function amount_remove()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','cabels_amount_remove'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,122 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\ProductCategory;
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class CategoryPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','categories_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,85 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class LoanPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','loans_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create_user(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','loans_create_user'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create_laptop(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','loans_create_laptop'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function adjust(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','loans_adjust'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function return(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','loans_return'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,123 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Productmodel;
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class ModelPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','models_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
}
|
||||
@@ -0,0 +1,121 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class NotePolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any notes.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any notes.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create notes.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','notes_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,45 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class OtherPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
public function logs()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','logs_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
public function home_page()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','home_page'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
public function statistics()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','statistics'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,61 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class PDFPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','pdf_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','pdf_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','pdf_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,144 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class ProductPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can add to the pool.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function amount_add()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_amount_add'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can remove from the pool.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function amount_remove()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','products_amount_remove'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,119 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class ReservationPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function extend(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_extend'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function return(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_return'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can validate the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function validate(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_validate'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can cancel the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function cancel(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_cancel'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function pickup(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_pickup'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function setup(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','reservations_setup'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,127 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class RolePolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
public function viewAny(): Response
|
||||
{
|
||||
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
//ConsoleLogger::DebugToConsole("users Policy - View - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view')));
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
|
||||
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function edit_permissions()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit_permissions'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
}
|
||||
@@ -0,0 +1,123 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\Room;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class RoomPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
|
||||
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','rooms_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,125 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\Room;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class SubcategoryPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function view(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_view'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_edit'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
|
||||
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force()
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','subcategories_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,156 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Permission;
|
||||
use App\Models\User;
|
||||
use Illuminate\Auth\Access\HandlesAuthorization;
|
||||
use Illuminate\Auth\Access\Response;
|
||||
use Illuminate\Support\Facades\Auth;
|
||||
|
||||
class UserPolicy
|
||||
{
|
||||
use HandlesAuthorization;
|
||||
|
||||
/**
|
||||
* Create a new policy instance.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public function __construct()
|
||||
{
|
||||
//
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_viewAny'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view any models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function viewAny_deleted(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_viewAny_deleted'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can view the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @param User $model
|
||||
* @return Response
|
||||
*/
|
||||
public function view(User $user): Response
|
||||
{
|
||||
return ($user->id === Auth::user()->id
|
||||
or Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_view')))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can create models.
|
||||
*
|
||||
* @return Response
|
||||
*/
|
||||
public function create(): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_create'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can update the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response
|
||||
*/
|
||||
public function edit(User $user): Response
|
||||
{
|
||||
return ($user->id === Auth::user()->id
|
||||
or Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_edit')))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
|
||||
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can delete the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response
|
||||
*/
|
||||
public function delete(User $user): Response
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_delete'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can restore the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function restore(User $user)
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_restore'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function delete_force(User $user)
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_delete_force'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function edit_username(User $user)
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_edit_username'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine whether the user can permanently delete the model.
|
||||
*
|
||||
* @param User $user
|
||||
* @return Response|bool
|
||||
*/
|
||||
public function edit_role(User $user)
|
||||
{
|
||||
return Auth::user()->role->permissions->contains(Permission::firstWhere('name', '=', 'users_edit_role'))
|
||||
? Response::allow()
|
||||
: Response::deny('you are not the chosen one');
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user