Lager-v3/app/Policies/RolePolicy.php

128 lines
3.8 KiB
PHP

<?php
namespace App\Policies;
use App\Models\Permission;
use Illuminate\Auth\Access\HandlesAuthorization;
use Illuminate\Auth\Access\Response;
use Illuminate\Support\Facades\Auth;
class RolePolicy
{
use HandlesAuthorization;
/**
* Create a new policy instance.
*
* @return void
*/
public function __construct()
{
//
}
public function viewAny(): Response
{
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
public function viewAny_deleted(): Response
{
//ConsoleLogger::DebugToConsole("users Policy - viewAny - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view_any')));
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_viewAny_deleted'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can view the model.
*
* @return Response
*/
public function view(): Response
{
//ConsoleLogger::DebugToConsole("users Policy - View - returns: ".$user->role->permissions->contains(Permission::firstWhere('name', '=', 'user_view')));
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_view'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can create models.
*
* @return Response
*/
public function create(): Response
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_create'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can update the model.
*
* @return Response
*/
public function edit(): Response
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can delete the model.
*
* @return Response
*/
public function delete(): Response
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can restore the model.
*
* @return Response|bool
*/
public function restore()
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_restore'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can permanently delete the model.
*
* @return Response|bool
*/
public function delete_force()
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_delete_force'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
/**
* Determine whether the user can permanently delete the model.
*
* @return Response|bool
*/
public function edit_permissions()
{
return Auth::user()->role->permissions->contains(Permission::firstWhere('name','=','roles_edit_permissions'))
? Response::allow()
: Response::deny('you are not the chosen one');
}
}