bert.hausmans
1cb7674d52
- Update API: events, users, policies, routes, resources, migrations - Remove deprecated models/resources (customers, setlists, invitations, etc.) - Refresh admin app and docs; remove apps/band Made-with: Cursor
49 lines
1.2 KiB
PHP
49 lines
1.2 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Policies;
|
|
|
|
use App\Models\Event;
|
|
use App\Models\Organisation;
|
|
use App\Models\User;
|
|
|
|
final class EventPolicy
|
|
{
|
|
public function viewAny(User $user, Organisation $organisation): bool
|
|
{
|
|
return $user->hasRole('super_admin')
|
|
|| $organisation->users()->where('user_id', $user->id)->exists();
|
|
}
|
|
|
|
public function view(User $user, Event $event): bool
|
|
{
|
|
return $user->hasRole('super_admin')
|
|
|| $event->organisation->users()->where('user_id', $user->id)->exists();
|
|
}
|
|
|
|
public function create(User $user, Organisation $organisation): bool
|
|
{
|
|
if ($user->hasRole('super_admin')) {
|
|
return true;
|
|
}
|
|
|
|
return $organisation->users()
|
|
->where('user_id', $user->id)
|
|
->wherePivotIn('role', ['org_admin', 'org_member'])
|
|
->exists();
|
|
}
|
|
|
|
public function update(User $user, Event $event): bool
|
|
{
|
|
if ($user->hasRole('super_admin')) {
|
|
return true;
|
|
}
|
|
|
|
return $event->organisation->users()
|
|
->where('user_id', $user->id)
|
|
->wherePivotIn('role', ['org_admin', 'org_member'])
|
|
->exists();
|
|
}
|
|
}
|