1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-08 20:22:42 +01:00
invoiceninja/app/Policies/EntityPolicy.php

112 lines
2.7 KiB
PHP
Raw Normal View History

2016-04-23 17:52:36 +02:00
<?php
namespace App\Policies;
use App\Models\User;
2016-04-23 17:52:36 +02:00
use Illuminate\Auth\Access\HandlesAuthorization;
use Illuminate\Support\Facades\Log;
2016-04-23 17:52:36 +02:00
/**
2017-01-30 20:40:43 +01:00
* Class EntityPolicy.
*/
2016-04-26 03:53:39 +02:00
class EntityPolicy
2016-04-23 17:52:36 +02:00
{
use HandlesAuthorization;
/**
2017-01-30 20:49:42 +01:00
* @param User $user
* @param $item - entity name or object
2017-01-30 20:40:43 +01:00
*
* @return bool
*/
2017-01-30 17:05:31 +01:00
public static function create(User $user, $item)
{
if (! static::checkModuleEnabled($user, $item))
2016-10-27 10:57:51 +02:00
return false;
$entityType = is_string($item) ? $item : $item->getEntityType();
return $user->hasPermission('create_' . $entityType);
2016-04-23 17:52:36 +02:00
}
/**
* @param User $user
* @param $item - entity name or object
*
* @return bool
*/
2017-01-30 17:05:31 +01:00
public static function edit(User $user, $item)
{
if (! static::checkModuleEnabled($user, $item))
2016-10-27 10:57:51 +02:00
return false;
$entityType = is_string($item) ? $item : $item->getEntityType();
return $user->hasPermission('edit_' . $entityType) || $user->owns($item);
2016-04-23 17:52:36 +02:00
}
/**
* @param User $user
* @param $item - entity name or object
*
* @return bool
*/
2017-01-30 17:05:31 +01:00
public static function view(User $user, $item)
{
if (! static::checkModuleEnabled($user, $item))
2016-10-27 10:57:51 +02:00
return false;
$entityType = is_string($item) ? $item : $item->getEntityType();
return $user->hasPermission('view_' . $entityType) || $user->owns($item);
2016-04-26 03:53:39 +02:00
}
/**
* @param User $user
* @param $ownerUserId
2017-01-30 20:40:43 +01:00
*
* Legacy permissions - retaining these for legacy code however new code
* should use auth()->user()->can('view', $ENTITY_TYPE)
*
* $ENTITY_TYPE can be either the constant ie ENTITY_INVOICE, or the entity $object
*
* @return bool
*/
2017-01-30 17:05:31 +01:00
public static function viewByOwner(User $user, $ownerUserId)
{
return $user->id == $ownerUserId;
2016-04-26 03:53:39 +02:00
}
/**
* @param User $user
* @param $ownerUserId
2017-01-30 20:40:43 +01:00
*
* Legacy permissions - retaining these for legacy code however new code
* should use auth()->user()->can('edit', $ENTITY_TYPE)
*
* $ENTITY_TYPE can be either the constant ie ENTITY_INVOICE, or the entity $object
*
* @return bool
*/
2017-01-30 17:05:31 +01:00
public static function editByOwner(User $user, $ownerUserId)
{
return $user->id == $ownerUserId;
2016-04-23 17:52:36 +02:00
}
2016-10-27 10:57:51 +02:00
/**
* @param User $user
* @param $item - entity name or object
* @return bool
*/
2016-10-27 10:57:51 +02:00
private static function checkModuleEnabled(User $user, $item)
{
$entityType = is_string($item) ? $item : $item->getEntityType();
return $user->account->isModuleEnabled($entityType);
2016-10-27 10:57:51 +02:00
}
}