nurmuhammet/backend-mm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ae480cf2f64678d66fa635a5679ac7ed2ff64802
backend-mm/app/Policies/Ecommerce/Product/Property/AttributePolicy.php
Nurmuhammet Allanov ae480cf2f6 wip
2025-09-25 03:03:31 +05:00

117 lines
2.5 KiB
PHP
Raw Blame History

<?php
namespace App\Policies\Ecommerce\Product\Property;
use App\Models\Ecommerce\Product\Property\Attribute;
use App\Models\User;
use Illuminate\Auth\Access\HandlesAuthorization;
use Illuminate\Auth\Access\Response;
class AttributePolicy
{
use HandlesAuthorization;
/**
* Perform pre-authorization checks.
*/
public function before(User $user, string $ability): ?Response
{
if ($user->isMe()) {
return $this->allow();
}
return null;
}
/**
* Determine whether the user can view any models.
*/
public function viewAny(User $user): Response
{
if ($user->hasRole(['admin', 'vendor'])) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can view the model.
*/
public function view(User $user, Attribute $attribute): Response
{
if ($user->hasRole(['admin', 'vendor'])) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can create models.
*/
public function create(User $user): Response
{
if ($user->hasRole('admin')) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can update the model.
*/
public function update(User $user, Attribute $attribute): Response
{
if ($user->hasRole('admin')) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can delete the model.
*/
public function delete(User $user, Attribute $attribute): Response
{
if (in_array($attribute->slug, [
'size',
'colour',
])) {
return $this->deny();
}
if ($user->hasRole(['admin'])) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can restore the model.
*/
public function restore(User $user, Attribute $attribute): Response
{
if ($user->hasRole(['admin'])) {
return $this->allow();
}
return $this->deny();
}
/**
* Determine whether the user can permanently delete the model.
*/
public function forceDelete(User $user, Attribute $attribute): Response
{
if ($user->hasRole(['admin'])) {
return $this->allow();
}
return $this->deny();
}
}
Reference in New Issue View Git Blame Copy Permalink