hasRole('super_admin') || $organisation->users()->where('user_id', $user->id)->exists(); } public function view(User $user, PersonIdentityMatch $match): bool { $match->loadMissing('person.event.organisation'); $person = $match->person; return $user->hasRole('super_admin') || $person->event->organisation->users()->where('user_id', $user->id)->exists(); } public function confirm(User $user, PersonIdentityMatch $match): bool { return $this->canManageMatch($user, $match); } public function dismiss(User $user, PersonIdentityMatch $match): bool { return $this->canManageMatch($user, $match); } public function bulkConfirm(User $user, Organisation $organisation): bool { return $user->hasRole('super_admin') || $organisation->users()->where('user_id', $user->id)->exists(); } private function canManageMatch(User $user, PersonIdentityMatch $match): bool { $match->loadMissing('person.event.organisation'); $event = $match->person->event; if ($user->hasRole('super_admin')) { return true; } $isOrgAdmin = $event->organisation->users() ->where('user_id', $user->id) ->wherePivot('role', 'org_admin') ->exists(); if ($isOrgAdmin) { return true; } return $event->users() ->where('user_id', $user->id) ->wherePivot('role', 'event_manager') ->exists(); } }