crewli/api/app/Http/Controllers/Api/V1/LocationController.php

<?php

declare(strict_types=1);

namespace App\Http\Controllers\Api\V1;

use App\Http\Controllers\Controller;
use App\Http\Controllers\Api\V1\Traits\VerifiesOrganisationEvent;
use App\Http\Requests\Api\V1\StoreLocationRequest;
use App\Http\Requests\Api\V1\UpdateLocationRequest;
use App\Http\Resources\Api\V1\LocationResource;
use App\Models\Event;
use App\Models\Location;
use App\Models\Organisation;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Resources\Json\AnonymousResourceCollection;
use Illuminate\Support\Facades\Gate;

final class LocationController extends Controller
{
    use VerifiesOrganisationEvent;

    public function index(Organisation $organisation, Event $event): AnonymousResourceCollection
    {
        $this->verifyEventBelongsToOrganisation($organisation, $event);
        Gate::authorize('viewAny', [Location::class, $event]);

        $locations = $event->locations()->orderBy('name')->get();

        return LocationResource::collection($locations);
    }

    public function store(StoreLocationRequest $request, Organisation $organisation, Event $event): JsonResponse
    {
        $this->verifyEventBelongsToOrganisation($organisation, $event);
        Gate::authorize('create', [Location::class, $event]);

        $location = $event->locations()->create($request->validated());

        return $this->created(new LocationResource($location));
    }

    public function update(UpdateLocationRequest $request, Organisation $organisation, Event $event, Location $location): JsonResponse
    {
        $this->verifyEventBelongsToOrganisation($organisation, $event);
        Gate::authorize('update', [$location, $event]);

        $location->update($request->validated());

        return $this->success(new LocationResource($location->fresh()));
    }

    public function destroy(Organisation $organisation, Event $event, Location $location): JsonResponse
    {
        $this->verifyEventBelongsToOrganisation($organisation, $event);
        Gate::authorize('delete', [$location, $event]);

        $location->delete();

        return response()->json(null, 204);
    }
}