X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/b8c16b15a9f945b72d2ca4fe0c0172ba422199bc..refs/pull/2515/head:/app/Auth/Role.php diff --git a/app/Auth/Role.php b/app/Auth/Role.php index df9b1cea9..629cd6a95 100644 --- a/app/Auth/Role.php +++ b/app/Auth/Role.php @@ -2,16 +2,21 @@ use BookStack\Auth\Permissions\JointPermission; use BookStack\Auth\Permissions\RolePermission; +use BookStack\Interfaces\Loggable; use BookStack\Model; +use Illuminate\Database\Eloquent\Collection; +use Illuminate\Database\Eloquent\Relations\BelongsToMany; +use Illuminate\Database\Eloquent\Relations\HasMany; /** * Class Role + * @property int $id * @property string $display_name * @property string $description * @property string $external_auth_id - * @package BookStack\Auth + * @property string $system_name */ -class Role extends Model +class Role extends Model implements Loggable { protected $fillable = ['display_name', 'description', 'external_auth_id']; @@ -19,16 +24,15 @@ class Role extends Model /** * The roles that belong to the role. */ - public function users() + public function users(): BelongsToMany { return $this->belongsToMany(User::class)->orderBy('name', 'asc'); } /** * Get all related JointPermissions. - * @return \Illuminate\Database\Eloquent\Relations\HasMany */ - public function jointPermissions() + public function jointPermissions(): HasMany { return $this->hasMany(JointPermission::class); } @@ -36,17 +40,15 @@ class Role extends Model /** * The RolePermissions that belong to the role. */ - public function permissions() + public function permissions(): BelongsToMany { return $this->belongsToMany(RolePermission::class, 'permission_role', 'role_id', 'permission_id'); } /** * Check if this role has a permission. - * @param $permissionName - * @return bool */ - public function hasPermission($permissionName) + public function hasPermission(string $permissionName): bool { $permissions = $this->getRelationValue('permissions'); foreach ($permissions as $permission) { @@ -59,7 +61,6 @@ class Role extends Model /** * Add a permission to this role. - * @param RolePermission $permission */ public function attachPermission(RolePermission $permission) { @@ -68,7 +69,6 @@ class Role extends Model /** * Detach a single permission from this role. - * @param RolePermission $permission */ public function detachPermission(RolePermission $permission) { @@ -76,40 +76,42 @@ class Role extends Model } /** - * Get the role object for the specified role. - * @param $roleName - * @return Role + * Get the role of the specified display name. */ - public static function getRole($roleName) + public static function getRole(string $displayName): ?Role { - return static::query()->where('name', '=', $roleName)->first(); + return static::query()->where('display_name', '=', $displayName)->first(); } /** * Get the role object for the specified system role. - * @param $roleName - * @return Role */ - public static function getSystemRole($roleName) + public static function getSystemRole(string $systemName): ?Role { - return static::query()->where('system_name', '=', $roleName)->first(); + return static::query()->where('system_name', '=', $systemName)->first(); } /** * Get all visible roles - * @return mixed */ - public static function visible() + public static function visible(): Collection { return static::query()->where('hidden', '=', false)->orderBy('name')->get(); } /** * Get the roles that can be restricted. - * @return \Illuminate\Database\Eloquent\Builder[]|\Illuminate\Database\Eloquent\Collection */ - public static function restrictable() + public static function restrictable(): Collection { return static::query()->where('system_name', '!=', 'admin')->get(); } + + /** + * @inheritdoc + */ + public function logDescriptor(): string + { + return "({$this->id}) {$this->display_name}"; + } }