class PermissionsRepo
{
- protected $permission;
- protected $role;
- protected $permissionService;
-
+ protected JointPermissionBuilder $permissionBuilder;
protected $systemRoles = ['admin', 'public'];
/**
* PermissionsRepo constructor.
*/
- public function __construct(RolePermission $permission, Role $role, PermissionService $permissionService)
+ public function __construct(JointPermissionBuilder $permissionBuilder)
{
- $this->permission = $permission;
- $this->role = $role;
- $this->permissionService = $permissionService;
+ $this->permissionBuilder = $permissionBuilder;
}
/**
*/
public function getAllRoles(): Collection
{
- return $this->role->all();
+ return Role::query()->get();
}
/**
*/
public function getAllRolesExcept(Role $role): Collection
{
- return $this->role->where('id', '!=', $role->id)->get();
+ return Role::query()->where('id', '!=', $role->id)->get();
}
/**
*/
public function getRoleById($id): Role
{
- return $this->role->newQuery()->findOrFail($id);
+ return Role::query()->findOrFail($id);
}
/**
*/
public function saveNewRole(array $roleData): Role
{
- $role = $this->role->newInstance($roleData);
+ $role = new Role($roleData);
$role->mfa_enforced = ($roleData['mfa_enforced'] ?? 'false') === 'true';
$role->save();
$permissions = isset($roleData['permissions']) ? array_keys($roleData['permissions']) : [];
$this->assignRolePermissions($role, $permissions);
- $this->permissionService->buildJointPermissionForRole($role);
+ $this->permissionBuilder->rebuildForRole($role);
+
Activity::add(ActivityType::ROLE_CREATE, $role);
return $role;
*/
public function updateRole($roleId, array $roleData)
{
- /** @var Role $role */
- $role = $this->role->newQuery()->findOrFail($roleId);
+ $role = $this->getRoleById($roleId);
$permissions = isset($roleData['permissions']) ? array_keys($roleData['permissions']) : [];
if ($role->system_name === 'admin') {
$role->fill($roleData);
$role->mfa_enforced = ($roleData['mfa_enforced'] ?? 'false') === 'true';
$role->save();
- $this->permissionService->buildJointPermissionForRole($role);
+ $this->permissionBuilder->rebuildForRole($role);
+
Activity::add(ActivityType::ROLE_UPDATE, $role);
}
/**
- * Assign an list of permission names to an role.
+ * Assign a list of permission names to a role.
*/
protected function assignRolePermissions(Role $role, array $permissionNameArray = [])
{
$permissionNameArray = array_values($permissionNameArray);
if ($permissionNameArray) {
- $permissions = $this->permission->newQuery()
+ $permissions = RolePermission::query()
->whereIn('name', $permissionNameArray)
->pluck('id')
->toArray();
*/
public function deleteRole($roleId, $migrateRoleId)
{
- /** @var Role $role */
- $role = $this->role->newQuery()->findOrFail($roleId);
+ $role = $this->getRoleById($roleId);
// Prevent deleting admin role or default registration role.
if ($role->system_name && in_array($role->system_name, $this->systemRoles)) {
}
if ($migrateRoleId) {
- $newRole = $this->role->newQuery()->find($migrateRoleId);
+ $newRole = Role::query()->find($migrateRoleId);
if ($newRole) {
$users = $role->users()->pluck('id')->toArray();
$newRole->users()->sync($users);
}
}
- $this->permissionService->deleteJointPermissionsForRole($role);
+ $role->entityPermissions()->delete();
+ $role->jointPermissions()->delete();
Activity::add(ActivityType::ROLE_DELETE, $role);
$role->delete();
}
projects / bookstack / blobdiff