1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-10 05:02:36 +01:00
invoiceninja/app/Policies/UserPolicy.php

46 lines
1.0 KiB
PHP
Raw Normal View History

2019-04-27 11:20:03 +02:00
<?php
2019-05-11 05:32:07 +02:00
/**
* Invoice Ninja (https://invoiceninja.com).
2019-05-11 05:32:07 +02:00
*
* @link https://github.com/invoiceninja/invoiceninja source repository
*
2023-01-28 23:21:40 +01:00
* @copyright Copyright (c) 2023. Invoice Ninja LLC (https://invoiceninja.com)
2019-05-11 05:32:07 +02:00
*
2021-06-16 08:58:16 +02:00
* @license https://www.elastic.co/licensing/elastic-license
2019-05-11 05:32:07 +02:00
*/
2019-04-27 11:20:03 +02:00
namespace App\Policies;
2019-06-12 01:38:16 +02:00
use App\Models\CompanyUser;
2019-04-27 11:20:03 +02:00
use App\Models\User;
/**
* Class UserPolicy.
2019-04-27 11:20:03 +02:00
*/
class UserPolicy extends EntityPolicy
{
/**
* Checks if the user has create permissions.
*
* @param User $user
* @return bool
*/
public function create(User $user) : bool
{
return $user->isAdmin() || $user->hasPermission('create_user') || $user->hasPermission('create_all');
}
/*
*
* We need to override as User does not have the company_id property!!!!!
*
* We use the CompanyUser table as a proxy
*/
public function edit(User $user, $user_entity) : bool
{
$company_user = CompanyUser::whereUserId($user->id)->AuthCompany()->first();
return $user->isAdmin() && $company_user;
}
2019-04-27 11:20:03 +02:00
}