BookStack Code Mirror - bookstack/blob - app/Http/Controllers/PermissionController.php

   1 <?php namespace BookStack\Http\Controllers;
   2
   3 use BookStack\Exceptions\PermissionsException;
   4 use BookStack\Repos\PermissionsRepo;
   5 use Illuminate\Http\Request;
   6
   7 class PermissionController extends Controller
   8 {
   9
  10     protected $permissionsRepo;
  11
  12     /**
  13      * PermissionController constructor.
  14      * @param PermissionsRepo $permissionsRepo
  15      */
  16     public function __construct(PermissionsRepo $permissionsRepo)
  17     {
  18         $this->permissionsRepo = $permissionsRepo;
  19         parent::__construct();
  20     }
  21
  22     /**
  23      * Show a listing of the roles in the system.
  24      */
  25     public function listRoles()
  26     {
  27         $this->checkPermission('user-roles-manage');
  28         $roles = $this->permissionsRepo->getAllRoles();
  29         return view('settings/roles/index', ['roles' => $roles]);
  30     }
  31
  32     /**
  33      * Show the form to create a new role
  34      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  35      */
  36     public function createRole()
  37     {
  38         $this->checkPermission('user-roles-manage');
  39         return view('settings/roles/create');
  40     }
  41
  42     /**
  43      * Store a new role in the system.
  44      * @param Request $request
  45      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  46      */
  47     public function storeRole(Request $request)
  48     {
  49         $this->checkPermission('user-roles-manage');
  50         $this->validate($request, [
  51             'display_name' => 'required|min:3|max:200',
  52             'description' => 'max:250'
  53         ]);
  54
  55         $this->permissionsRepo->saveNewRole($request->all());
  56         session()->flash('success', trans('settings.role_create_success'));
  57         return redirect('/settings/roles');
  58     }
  59
  60     /**
  61      * Show the form for editing a user role.
  62      * @param $id
  63      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  64      * @throws PermissionsException
  65      */
  66     public function editRole($id)
  67     {
  68         $this->checkPermission('user-roles-manage');
  69         $role = $this->permissionsRepo->getRoleById($id);
  70         if ($role->hidden) throw new PermissionsException(trans('errors.role_cannot_be_edited'));
  71         return view('settings/roles/edit', ['role' => $role]);
  72     }
  73
  74     /**
  75      * Updates a user role.
  76      * @param $id
  77      * @param Request $request
  78      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  79      */
  80     public function updateRole($id, Request $request)
  81     {
  82         $this->checkPermission('user-roles-manage');
  83         $this->validate($request, [
  84             'display_name' => 'required|min:3|max:200',
  85             'description' => 'max:250'
  86         ]);
  87
  88         $this->permissionsRepo->updateRole($id, $request->all());
  89         session()->flash('success', trans('settings.role_update_success'));
  90         return redirect('/settings/roles');
  91     }
  92
  93     /**
  94      * Show the view to delete a role.
  95      * Offers the chance to migrate users.
  96      * @param $id
  97      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  98      */
  99     public function showDeleteRole($id)
 100     {
 101         $this->checkPermission('user-roles-manage');
 102         $role = $this->permissionsRepo->getRoleById($id);
 103         $roles = $this->permissionsRepo->getAllRolesExcept($role);
 104         $blankRole = $role->newInstance(['display_name' => trans('settings.role_delete_no_migration')]);
 105         $roles->prepend($blankRole);
 106         return view('settings/roles/delete', ['role' => $role, 'roles' => $roles]);
 107     }
 108
 109     /**
 110      * Delete a role from the system,
 111      * Migrate from a previous role if set.
 112      * @param $id
 113      * @param Request $request
 114      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
 115      */
 116     public function deleteRole($id, Request $request)
 117     {
 118         $this->checkPermission('user-roles-manage');
 119
 120         try {
 121             $this->permissionsRepo->deleteRole($id, $request->get('migrate_role_id'));
 122         } catch (PermissionsException $e) {
 123             session()->flash('error', $e->getMessage());
 124             return redirect()->back();
 125         }
 126
 127         session()->flash('success', trans('settings.role_delete_success'));
 128         return redirect('/settings/roles');
 129     }
 130 }