Webulgam/online.tbbank.gov.tm-laravel-nova
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

WIp

Browse Source
This commit is contained in:
Nurmuhammet Allanov
2023-12-14 19:03:25 +05:00
parent a3771218f0
commit 445884782a
12 changed files with 404 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
app/Models/User.php
View File

@@ -16,7 +16,6 @@ use Spatie\Permission\Traits\HasRoles;
class User extends Authenticatable
{
use Actionable;
use HasApiTokens;
use HasFactory;
use HasRoles;
@@ -75,6 +74,14 @@ class User extends Authenticatable
return $this->hasMany(LoanOrder::class);
}
/**
* Check if user has role.
*/
public function withoutRole(): bool
{
return $this->roles->count() === 0;
}
/**
* Check if user is me.
*/
@@ -138,4 +145,12 @@ class User extends Authenticatable
{
return ! is_null($this->phone_verified_at);
}
/**
* Profile page of user
*/
public function profilePage(): string
{
return '/resources/users/'. $this->id;
}
}

7
app/Nova/Resources/System/Roles/Permission.php
View File

@@ -32,13 +32,6 @@ class Permission extends Resource
'id', 'name',
];
/**
* Indicates if the resource should be displayed in the sidebar.
*
* @var bool
*/
public static $displayInNavigation = false;
/**
* Get the fields displayed by the resource.
*/

119
app/Policies/Order/Card/CardOrderPolicy.php Normal file
View File

@@ -0,0 +1,119 @@
<?php
namespace App\Policies\Order\Card;
use App\Models\CardOrder;
use App\Models\User;
class CardOrderPolicy
{
/**
* Determine whether the user can view any models.
*/
public function viewAny(User $user): bool
{
if ($user->isOperator() && $user->cannot('viewCardOrders')) {
return false;
}
return true;
}
/**
* Determine whether the user can view the model.
*/
public function view(User $user, CardOrder $cardOrder): bool
{
if ($user->isAdmin()) {
return true;
}
if ($user->isOperator() && $user->can('viewCardOrders')) {
return $user->branches()->where('branches.id', $loanOrder->branch_id)->exists();
}
if ($user->ownsLoanOrder($loanOrder)) {
return true;
}
return false;
}
/**
* Determine whether the user can create models.
*/
public function create(User $user): bool
{
if ($user->isOperator() && $user->cannot('viewCardOrders')) {
return false;
}
return true;
}
/**
* Determine whether the user can update the model.
*/
public function update(User $user, CardOrder $cardOrder): bool
{
if ($user->isAdmin()) {
return true;
}
if ($user->isOperator() && $user->can('viewCardOrders')) {
return $user->branches()->where('branches.id', $loanOrder->branch_id)->exists();
}
if ($user->ownsLoanOrder($loanOrder) && in_array($loanOrder->status, [
OrderRepo::PENDING,
])) {
return true;
}
return false;
}
/**
* Determine whether the user can delete the model.
*/
public function delete(User $user, CardOrder $cardOrder): bool
{
if ($user->isAdmin()) {
return true;
}
if ($user->isOperator() && $user->can('viewLoanOrders')) {
return $user->branches()->where('branches.id', $loanOrder->branch_id)->exists();
}
if ($user->ownsLoanOrder($loanOrder)) {
return true;
}
return false;
}
/**
* Determine whether the user can restore the model.
*/
public function restore(User $user, CardOrder $cardOrder): bool
{
if ($user->isMe()) {
return true;
}
return false;
}
/**
* Determine whether the user can permanently delete the model.
*/
public function forceDelete(User $user, CardOrder $cardOrder): bool
{
if ($user->isMe()) {
return true;
}
return false;
}
}

93
app/Policies/Order/Card/CardStatePolicy.php Normal file
View File

@@ -0,0 +1,93 @@
<?php
namespace App\Policies\Order\Card;
use App\Models\CardState;
use App\Models\User;
class CardStatePolicy
{
/**
* Determine whether the user can view any models.
*/
public function viewAny(User $user): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can view the model.
*/
public function view(User $user, CardState $cardState): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can create models.
*/
public function create(User $user): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can update the model.
*/
public function update(User $user, CardState $cardState): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can delete the model.
*/
public function delete(User $user, CardState $cardState): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can restore the model.
*/
public function restore(User $user, CardState $cardState): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can permanently delete the model.
*/
public function forceDelete(User $user, CardState $cardState): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
}

93
app/Policies/Order/Card/CardTypePolicy.php Normal file
View File

@@ -0,0 +1,93 @@
<?php
namespace App\Policies\Order\Card;
use App\Models\Order\Card\CardType;
use App\Models\User;
class CardTypePolicy
{
/**
* Determine whether the user can view any models.
*/
public function viewAny(User $user): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can view the model.
*/
public function view(User $user, CardType $cardType): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can create models.
*/
public function create(User $user): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can update the model.
*/
public function update(User $user, CardType $cardType): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can delete the model.
*/
public function delete(User $user, CardType $cardType): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can restore the model.
*/
public function restore(User $user, CardType $cardType): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
/**
* Determine whether the user can permanently delete the model.
*/
public function forceDelete(User $user, CardType $cardType): bool
{
if ($user->isAdmin()) {
return true;
}
return false;
}
}

4
app/Policies/Order/Loan/LoanOrderPolicy.php
View File

@@ -99,7 +99,7 @@ class LoanOrderPolicy
*/
public function restore(User $user, LoanOrder $loanOrder): bool
{
if ($user->isAdmin()) {
if ($user->isMe()) {
return true;
}
@@ -111,7 +111,7 @@ class LoanOrderPolicy
*/
public function forceDelete(User $user, LoanOrder $loanOrder): bool
{
if ($user->isAdmin()) {
if ($user->isMe()) {
return true;
}

3
app/Providers/AuthServiceProvider.php
View File

@@ -61,8 +61,5 @@ class AuthServiceProvider extends ServiceProvider
// Tooling permissions...
Gate::define('viewPulse', fn ($user) => $user->isMe());
// LoanOrder permissions...
Gate::define('viewLoanOrders', fn ($user) => $user->isSystemUser());
}
}

32
app/Providers/NovaServiceProvider.php
View File

@@ -31,6 +31,14 @@ use Stepanenko3\LogsTool\LogsTool;
class NovaServiceProvider extends NovaApplicationServiceProvider
{
/**
* Register any application services.
*/
public function register(): void
{
Nova::initialPath(NovaRepo::initialPath());
}
/**
* Bootstrap any application services.
*/
@@ -39,7 +47,7 @@ class NovaServiceProvider extends NovaApplicationServiceProvider
parent::boot();
Nova::withBreadcrumbs();
Nova::footer(fn () => view('vendor.nova.partials.footer')->render());
Nova::footer(NovaRepo::footer());
$this->setupNavigation();
$this->setupUserNavigation();
@@ -66,9 +74,7 @@ class NovaServiceProvider extends NovaApplicationServiceProvider
*/
protected function gate(): void
{
Gate::define('viewNova', function ($user) {
return $user->isSystemUser() || $user->phoneIsVerified();
});
Gate::define('viewNova', NovaRepo::viewNova());
}
/**
@@ -92,23 +98,15 @@ class NovaServiceProvider extends NovaApplicationServiceProvider
->onSwitchLocale(NovaRepo::localeSwitcherSave()),
BackupTool::make()
->canSee(fn () => auth()->user()->isMe()),
->canSee(NovaRepo::isMe()),
LogsTool::make()
->canSee(fn () => Gate::allows('isMe', auth()->user()))
->canDownload(fn () => Gate::allows('isMe', auth()->user()))
->canDelete(fn () => Gate::allows('isMe', auth()->user())),
->canSee(NovaRepo::isMe())
->canDownload(NovaRepo::isMe())
->canDelete(NovaRepo::isMe()),
];
}
/**
* Register any application services.
*/
public function register(): void
{
//
}
/**
* Setup navigation
*/
@@ -165,7 +163,7 @@ class NovaServiceProvider extends NovaApplicationServiceProvider
public function setupUserNavigation(): void
{
Nova::userMenu(function (Request $request, Menu $menu) {
$menu->prepend(MenuItem::make(__('My Profile'), sprintf('/resources/users/%s', $request->user()->id)));
$menu->prepend(MenuItem::make(__('My Profile'), $request->user()->profilePage()));
return $menu;
});

1
app/Repos/Order/Loan/LoanOrderRepo.php
View File

@@ -3,6 +3,7 @@
namespace App\Repos\Order\Loan;
use App\Models\Branch\Branch;
use App\Repos\Order\OrderRepo;
use Closure;
class LoanOrderRepo

41
app/Repos/System/Nova/NovaRepo.php
View File

@@ -5,10 +5,17 @@ namespace App\Repos\System\Nova;
use App\Models\System\Location\Province;
use Closure;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Gate;
use Laravel\Nova\Events\ServingNova;
class NovaRepo
{
/**
* Initial path
* @var string
*/
protected static string $initialPath = '/dashboards/main';
/**
* Serving nova application
*/
@@ -17,6 +24,24 @@ class NovaRepo
static::setLocale($event);
}
/**
* Initial path for nova
*/
public static function initialPath(): string
{
return request()->user() && request()->user()->withoutRole()
? request()->user()->profilePage()
: static::$initialPath;
}
/**
* This gate determines who can access Nova in non-local environments.
*/
public static function viewNova(): Closure
{
return fn ($user) => $user->isSystemUser() || $user->phoneIsVerified();
}
/**
* Set locales
*/
@@ -43,6 +68,22 @@ class NovaRepo
};
}
/**
* Nova Footer
*/
public static function footer(): Closure
{
return fn () => view('vendor.nova.partials.footer')->render();
}
/**
* Check if user is me
*/
public static function isMe(): Closure
{
return fn () => Gate::allows('isMe', auth()->user());
}
/**
* Depends on region
*/

1
database/seeders/DatabaseSeeder.php
View File

@@ -17,6 +17,7 @@ class DatabaseSeeder extends Seeder
ProvinceTableSeeder::class,
BranchTableSeeder::class,
LoanTypeSeeder::class,
PermissionTableSeeder::class,
]);
}
}

23
database/seeders/PermissionTableSeeder.php Normal file
View File

@@ -0,0 +1,23 @@
<?php
namespace Database\Seeders;
use App\Models\System\Roles\Permission;
use Illuminate\Database\Seeder;
class PermissionTableSeeder extends Seeder
{
/**
* Run the database seeds.
*/
public function run(): void
{
collect([
'ViewCardOrders',
'ViewLoanOrders',
])->each(fn ($name) => Permission::create([
'name' => $name,
'guard_name' => 'web',
]));
}
}