128 lines
3.8 KiB
PHP
128 lines
3.8 KiB
PHP
<?php
|
|
|
|
namespace App\Policies;
|
|
|
|
use App\Models\Permission;
|
|
use Illuminate\Auth\Access\HandlesAuthorization;
|
|
use Illuminate\Auth\Access\Response;
|
|
use Illuminate\Support\Facades\Auth;
|
|
|
|
class RolePolicy
|
|
{
|
|
use HandlesAuthorization;
|
|
|
|
/**
|
|
* Create a new policy instance.
|
|
*
|
|
* @return void
|
|
*/
|
|
public function __construct()
|
|
{
|
|
//
|
|
}
|
|
|
|
public function viewAny(): Response
|
|
{
|
|
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
public function viewAny_deleted(): Response
|
|
{
|
|
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny_deleted'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can view the model.
|
|
*
|
|
* @return Response
|
|
*/
|
|
public function view(): Response
|
|
{
|
|
//ConsoleLogger::DebugToConsole("users Policy - View - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view')));
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_view'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can create models.
|
|
*
|
|
* @return Response
|
|
*/
|
|
public function create(): Response
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_create'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can update the model.
|
|
*
|
|
* @return Response
|
|
*/
|
|
public function edit(): Response
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
|
|
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can delete the model.
|
|
*
|
|
* @return Response
|
|
*/
|
|
public function delete(): Response
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can restore the model.
|
|
*
|
|
* @return Response|bool
|
|
*/
|
|
public function restore()
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_restore'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can permanently delete the model.
|
|
*
|
|
* @return Response|bool
|
|
*/
|
|
public function delete_force()
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete_force'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
/**
|
|
* Determine whether the user can permanently delete the model.
|
|
*
|
|
* @return Response|bool
|
|
*/
|
|
public function edit_permissions()
|
|
{
|
|
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit_permissions'))
|
|
? Response::allow()
|
|
: Response::deny('you are not the chosen one');
|
|
}
|
|
|
|
}
|