BookStack Code Mirror - bookstack/blob - app/Http/Controllers/PermissionController.php

   1 <?php namespace BookStack\Http\Controllers;
   2
   3 use BookStack\Auth\Permissions\PermissionsRepo;
   4 use BookStack\Exceptions\PermissionsException;
   5 use Illuminate\Http\Request;
   6
   7 class PermissionController extends Controller
   8 {
   9
  10     protected $permissionsRepo;
  11
  12     /**
  13      * PermissionController constructor.
  14      * @param \BookStack\Auth\Permissions\PermissionsRepo $permissionsRepo
  15      */
  16     public function __construct(PermissionsRepo $permissionsRepo)
  17     {
  18         $this->permissionsRepo = $permissionsRepo;
  19         parent::__construct();
  20     }
  21
  22     /**
  23      * Show a listing of the roles in the system.
  24      */
  25     public function listRoles()
  26     {
  27         $this->checkPermission('user-roles-manage');
  28         $roles = $this->permissionsRepo->getAllRoles();
  29         return view('settings.roles.index', ['roles' => $roles]);
  30     }
  31
  32     /**
  33      * Show the form to create a new role
  34      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  35      */
  36     public function createRole()
  37     {
  38         $this->checkPermission('user-roles-manage');
  39         return view('settings.roles.create');
  40     }
  41
  42     /**
  43      * Store a new role in the system.
  44      * @param Request $request
  45      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  46      */
  47     public function storeRole(Request $request)
  48     {
  49         $this->checkPermission('user-roles-manage');
  50         $this->validate($request, [
  51             'display_name' => 'required|min:3|max:200',
  52             'description' => 'max:250'
  53         ]);
  54
  55         $this->permissionsRepo->saveNewRole($request->all());
  56         $this->showSuccessNotification(trans('settings.role_create_success'));
  57         return redirect('/settings/roles');
  58     }
  59
  60     /**
  61      * Show the form for editing a user role.
  62      * @param $id
  63      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  64      * @throws PermissionsException
  65      */
  66     public function editRole($id)
  67     {
  68         $this->checkPermission('user-roles-manage');
  69         $role = $this->permissionsRepo->getRoleById($id);
  70         if ($role->hidden) {
  71             throw new PermissionsException(trans('errors.role_cannot_be_edited'));
  72         }
  73         return view('settings.roles.edit', ['role' => $role]);
  74     }
  75
  76     /**
  77      * Updates a user role.
  78      * @param Request $request
  79      * @param $id
  80      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  81      * @throws PermissionsException
  82      * @throws \Illuminate\Validation\ValidationException
  83      */
  84     public function updateRole(Request $request, $id)
  85     {
  86         $this->checkPermission('user-roles-manage');
  87         $this->validate($request, [
  88             'display_name' => 'required|min:3|max:200',
  89             'description' => 'max:250'
  90         ]);
  91
  92         $this->permissionsRepo->updateRole($id, $request->all());
  93         $this->showSuccessNotification(trans('settings.role_update_success'));
  94         return redirect('/settings/roles');
  95     }
  96
  97     /**
  98      * Show the view to delete a role.
  99      * Offers the chance to migrate users.
 100      * @param $id
 101      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
 102      */
 103     public function showDeleteRole($id)
 104     {
 105         $this->checkPermission('user-roles-manage');
 106         $role = $this->permissionsRepo->getRoleById($id);
 107         $roles = $this->permissionsRepo->getAllRolesExcept($role);
 108         $blankRole = $role->newInstance(['display_name' => trans('settings.role_delete_no_migration')]);
 109         $roles->prepend($blankRole);
 110         return view('settings.roles.delete', ['role' => $role, 'roles' => $roles]);
 111     }
 112
 113     /**
 114      * Delete a role from the system,
 115      * Migrate from a previous role if set.
 116      * @param Request $request
 117      * @param $id
 118      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
 119      */
 120     public function deleteRole(Request $request, $id)
 121     {
 122         $this->checkPermission('user-roles-manage');
 123
 124         try {
 125             $this->permissionsRepo->deleteRole($id, $request->get('migrate_role_id'));
 126         } catch (PermissionsException $e) {
 127             $this->showErrorNotification($e->getMessage());
 128             return redirect()->back();
 129         }
 130
 131         $this->showSuccessNotification(trans('settings.role_delete_success'));
 132         return redirect('/settings/roles');
 133     }
 134 }