X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/a03245e427d3257eeb2bbf137e8e6ce1388c1e69..refs/pull/3918/head:/app/Auth/Role.php diff --git a/app/Auth/Role.php b/app/Auth/Role.php index 3ae469b59..b293d1af2 100644 --- a/app/Auth/Role.php +++ b/app/Auth/Role.php @@ -2,6 +2,7 @@ namespace BookStack\Auth; +use BookStack\Auth\Permissions\EntityPermission; use BookStack\Auth\Permissions\JointPermission; use BookStack\Auth\Permissions\RolePermission; use BookStack\Interfaces\Loggable; @@ -54,6 +55,14 @@ class Role extends Model implements Loggable return $this->belongsToMany(RolePermission::class, 'permission_role', 'role_id', 'permission_id'); } + /** + * Get the entity permissions assigned to this role. + */ + public function entityPermissions(): HasMany + { + return $this->hasMany(EntityPermission::class); + } + /** * Check if this role has a permission. */ @@ -101,38 +110,6 @@ class Role extends Model implements Loggable return static::query()->where('system_name', '=', $systemName)->first(); } - /** - * Get all visible roles. - */ - public static function visible(): Collection - { - return static::query()->where('hidden', '=', false)->orderBy('name')->get(); - } - - /** - * Get the roles that can be restricted. - */ - public static function restrictable(): Collection - { - return static::query() - ->where('system_name', '!=', 'admin') - ->orderBy('display_name', 'asc') - ->get(); - } - - /** - * Get a role to represent the case of 'Everyone else' in the system. - * Used within the interface since the default-fallback for permissions uses role_id=0. - */ - public static function getEveryoneElseRole(): self - { - return (new static())->forceFill([ - 'id' => 0, - 'display_name' => 'Everyone Else', - 'description' => 'Set permissions for all roles not specifically overridden.' - ]); - } - /** * {@inheritdoc} */