BookStack Code Mirror - bookstack/blob - app/Http/Controllers/PermissionController.php

   1 <?php namespace BookStack\Http\Controllers;
   2
   3 use BookStack\Exceptions\PermissionsException;
   4 use BookStack\Repos\PermissionsRepo;
   5 use BookStack\Services\RestrictionService;
   6 use Illuminate\Http\Request;
   7 use BookStack\Http\Requests;
   8
   9 class PermissionController extends Controller
  10 {
  11
  12     protected $permissionsRepo;
  13
  14     /**
  15      * PermissionController constructor.
  16      * @param PermissionsRepo $permissionsRepo
  17      */
  18     public function __construct(PermissionsRepo $permissionsRepo)
  19     {
  20         $this->permissionsRepo = $permissionsRepo;
  21         parent::__construct();
  22     }
  23
  24     /**
  25      * Show a listing of the roles in the system.
  26      */
  27     public function listRoles()
  28     {
  29         $this->checkPermission('user-roles-manage');
  30         $roles = $this->permissionsRepo->getAllRoles();
  31         return view('settings/roles/index', ['roles' => $roles]);
  32     }
  33
  34     /**
  35      * Show the form to create a new role
  36      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  37      */
  38     public function createRole()
  39     {
  40         $this->checkPermission('user-roles-manage');
  41         return view('settings/roles/create');
  42     }
  43
  44     /**
  45      * Store a new role in the system.
  46      * @param Request $request
  47      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  48      */
  49     public function storeRole(Request $request)
  50     {
  51         $this->checkPermission('user-roles-manage');
  52         $this->validate($request, [
  53             'display_name' => 'required|min:3|max:200',
  54             'description' => 'max:250'
  55         ]);
  56
  57         $this->permissionsRepo->saveNewRole($request->all());
  58         session()->flash('success', 'Role successfully created');
  59         return redirect('/settings/roles');
  60     }
  61
  62     /**
  63      * Show the form for editing a user role.
  64      * @param $id
  65      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  66      */
  67     public function editRole($id)
  68     {
  69         $this->checkPermission('user-roles-manage');
  70         $role = $this->permissionsRepo->getRoleById($id);
  71         return view('settings/roles/edit', ['role' => $role]);
  72     }
  73
  74     /**
  75      * Updates a user role.
  76      * @param $id
  77      * @param Request $request
  78      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  79      */
  80     public function updateRole($id, Request $request)
  81     {
  82         $this->checkPermission('user-roles-manage');
  83         $this->validate($request, [
  84             'display_name' => 'required|min:3|max:200',
  85             'description' => 'max:250'
  86         ]);
  87
  88         $this->permissionsRepo->updateRole($id, $request->all());
  89         session()->flash('success', 'Role successfully updated');
  90         return redirect('/settings/roles');
  91     }
  92
  93     /**
  94      * Show the view to delete a role.
  95      * Offers the chance to migrate users.
  96      * @param $id
  97      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  98      */
  99     public function showDeleteRole($id)
 100     {
 101         $this->checkPermission('user-roles-manage');
 102         $role = $this->permissionsRepo->getRoleById($id);
 103         $roles = $this->permissionsRepo->getAllRolesExcept($role);
 104         $blankRole = $role->newInstance(['display_name' => 'Don\'t migrate users']);
 105         $roles->prepend($blankRole);
 106         return view('settings/roles/delete', ['role' => $role, 'roles' => $roles]);
 107     }
 108
 109     /**
 110      * Delete a role from the system,
 111      * Migrate from a previous role if set.
 112      * @param $id
 113      * @param Request $request
 114      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
 115      */
 116     public function deleteRole($id, Request $request)
 117     {
 118         $this->checkPermission('user-roles-manage');
 119
 120         try {
 121             $this->permissionsRepo->deleteRole($id, $request->get('migrate_role_id'));
 122         } catch (PermissionsException $e) {
 123             session()->flash('error', $e->getMessage());
 124             return redirect()->back();
 125         }
 126
 127         session()->flash('success', 'Role successfully deleted');
 128         return redirect('/settings/roles');
 129     }
 130 }