X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/521b3b8eb113ec86c718c2f8040ab6f3c8394fbf..1b29d44689bbcf40fc79ef9b4257fc387d4b64be:/app/Http/Controllers/BookController.php diff --git a/app/Http/Controllers/BookController.php b/app/Http/Controllers/BookController.php index 97c401028..91cd4bd51 100644 --- a/app/Http/Controllers/BookController.php +++ b/app/Http/Controllers/BookController.php @@ -2,6 +2,7 @@ namespace Oxbow\Http\Controllers; +use Activity; use Illuminate\Http\Request; use Illuminate\Support\Facades\Auth; @@ -25,6 +26,7 @@ class BookController extends Controller { $this->bookRepo = $bookRepo; $this->pageRepo = $pageRepo; + parent::__construct(); } /** @@ -45,19 +47,21 @@ class BookController extends Controller */ public function create() { + $this->checkPermission('book-create'); return view('books/create'); } /** * Store a newly created book in storage. * - * @param Request $request + * @param Request $request * @return Response */ public function store(Request $request) { + $this->checkPermission('book-create'); $this->validate($request, [ - 'name' => 'required|string|max:255', + 'name' => 'required|string|max:255', 'description' => 'string|max:1000' ]); $book = $this->bookRepo->newFromInput($request->all()); @@ -65,6 +69,7 @@ class BookController extends Controller $book->created_by = Auth::user()->id; $book->updated_by = Auth::user()->id; $book->save(); + Activity::add($book, 'book_create', $book->id); return redirect('/books'); } @@ -88,6 +93,7 @@ class BookController extends Controller */ public function edit($slug) { + $this->checkPermission('book-update'); $book = $this->bookRepo->getBySlug($slug); return view('books/edit', ['book' => $book, 'current' => $book]); } @@ -96,20 +102,22 @@ class BookController extends Controller * Update the specified book in storage. * * @param Request $request - * @param $slug + * @param $slug * @return Response */ public function update(Request $request, $slug) { + $this->checkPermission('book-update'); $book = $this->bookRepo->getBySlug($slug); $this->validate($request, [ - 'name' => 'required|string|max:255', + 'name' => 'required|string|max:255', 'description' => 'string|max:1000' ]); $book->fill($request->all()); $book->slug = $this->bookRepo->findSuitableSlug($book->name, $book->id); $book->updated_by = Auth::user()->id; $book->save(); + Activity::add($book, 'book_update', $book->id); return redirect($book->getUrl()); } @@ -120,6 +128,7 @@ class BookController extends Controller */ public function showDelete($bookSlug) { + $this->checkPermission('book-delete'); $book = $this->bookRepo->getBySlug($bookSlug); return view('books/delete', ['book' => $book, 'current' => $book]); } @@ -132,6 +141,9 @@ class BookController extends Controller */ public function destroy($bookSlug) { + $this->checkPermission('book-delete'); + $book = $this->bookRepo->getBySlug($bookSlug); + Activity::addMessage('book_delete', 0, $book->name); $this->bookRepo->destroyBySlug($bookSlug); return redirect('/books'); }