82 lines
2.0 KiB
PHP
82 lines
2.0 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Policies;
|
|
|
|
use App\Models\CrowdList;
|
|
use App\Models\Event;
|
|
use App\Models\User;
|
|
|
|
final class CrowdListPolicy
|
|
{
|
|
public function viewAny(User $user, Event $event): bool
|
|
{
|
|
return $user->hasRole('super_admin')
|
|
|| $event->organisation->users()->where('user_id', $user->id)->exists();
|
|
}
|
|
|
|
public function create(User $user, Event $event): bool
|
|
{
|
|
return $this->canManageEvent($user, $event);
|
|
}
|
|
|
|
public function update(User $user, CrowdList $crowdList, Event $event): bool
|
|
{
|
|
if ($crowdList->event_id !== $event->id) {
|
|
return false;
|
|
}
|
|
|
|
return $this->canManageEvent($user, $event);
|
|
}
|
|
|
|
public function delete(User $user, CrowdList $crowdList, Event $event): bool
|
|
{
|
|
if ($crowdList->event_id !== $event->id) {
|
|
return false;
|
|
}
|
|
|
|
return $this->canManageEvent($user, $event);
|
|
}
|
|
|
|
public function viewPersons(User $user, CrowdList $crowdList, Event $event): bool
|
|
{
|
|
if ($crowdList->event_id !== $event->id) {
|
|
return false;
|
|
}
|
|
|
|
return $user->hasRole('super_admin')
|
|
|| $event->organisation->users()->where('user_id', $user->id)->exists();
|
|
}
|
|
|
|
public function managePerson(User $user, CrowdList $crowdList, Event $event): bool
|
|
{
|
|
if ($crowdList->event_id !== $event->id) {
|
|
return false;
|
|
}
|
|
|
|
return $this->canManageEvent($user, $event);
|
|
}
|
|
|
|
private function canManageEvent(User $user, Event $event): bool
|
|
{
|
|
if ($user->hasRole('super_admin')) {
|
|
return true;
|
|
}
|
|
|
|
$isOrgAdmin = $event->organisation->users()
|
|
->where('user_id', $user->id)
|
|
->wherePivot('role', 'org_admin')
|
|
->exists();
|
|
|
|
if ($isOrgAdmin) {
|
|
return true;
|
|
}
|
|
|
|
return $event->users()
|
|
->where('user_id', $user->id)
|
|
->wherePivot('role', 'event_manager')
|
|
->exists();
|
|
}
|
|
}
|