BookStack Code Mirror - bookstack/blob - app/Http/Controllers/PermissionController.php

   1 <?php namespace BookStack\Http\Controllers;
   2
   3 use BookStack\Exceptions\PermissionsException;
   4 use BookStack\Repos\PermissionsRepo;
   5 use Illuminate\Http\Request;
   6
   7 class PermissionController extends Controller
   8 {
   9
  10     protected $permissionsRepo;
  11
  12     /**
  13      * PermissionController constructor.
  14      * @param PermissionsRepo $permissionsRepo
  15      */
  16     public function __construct(PermissionsRepo $permissionsRepo)
  17     {
  18         $this->permissionsRepo = $permissionsRepo;
  19         parent::__construct();
  20     }
  21
  22     /**
  23      * Show a listing of the roles in the system.
  24      */
  25     public function listRoles()
  26     {
  27         $this->checkPermission('user-roles-manage');
  28         $roles = $this->permissionsRepo->getAllRoles();
  29         return view('settings/roles/index', ['roles' => $roles]);
  30     }
  31
  32     /**
  33      * Show the form to create a new role
  34      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  35      */
  36     public function createRole()
  37     {
  38         $this->checkPermission('user-roles-manage');
  39         return view('settings/roles/create');
  40     }
  41
  42     /**
  43      * Store a new role in the system.
  44      * @param Request $request
  45      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  46      */
  47     public function storeRole(Request $request)
  48     {
  49         $this->checkPermission('user-roles-manage');
  50         $this->validate($request, [
  51             'display_name' => 'required|min:3|max:200',
  52             'description' => 'max:250'
  53         ]);
  54
  55         $this->permissionsRepo->saveNewRole($request->all());
  56         session()->flash('success', trans('settings.role_create_success'));
  57         return redirect('/settings/roles');
  58     }
  59
  60     /**
  61      * Show the form for editing a user role.
  62      * @param $id
  63      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
  64      * @throws PermissionsException
  65      */
  66     public function editRole($id)
  67     {
  68         $this->checkPermission('user-roles-manage');
  69         $role = $this->permissionsRepo->getRoleById($id);
  70         if ($role->hidden) {
  71             throw new PermissionsException(trans('errors.role_cannot_be_edited'));
  72         }
  73         return view('settings/roles/edit', ['role' => $role]);
  74     }
  75
  76     /**
  77      * Updates a user role.
  78      * @param $id
  79      * @param Request $request
  80      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  81      */
  82     public function updateRole($id, Request $request)
  83     {
  84         $this->checkPermission('user-roles-manage');
  85         $this->validate($request, [
  86             'display_name' => 'required|min:3|max:200',
  87             'description' => 'max:250'
  88         ]);
  89
  90         $this->permissionsRepo->updateRole($id, $request->all());
  91         session()->flash('success', trans('settings.role_update_success'));
  92         return redirect('/settings/roles');
  93     }
  94
  95     /**
  96      * Show the view to delete a role.
  97      * Offers the chance to migrate users.
  98      * @param $id
  99      * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
 100      */
 101     public function showDeleteRole($id)
 102     {
 103         $this->checkPermission('user-roles-manage');
 104         $role = $this->permissionsRepo->getRoleById($id);
 105         $roles = $this->permissionsRepo->getAllRolesExcept($role);
 106         $blankRole = $role->newInstance(['display_name' => trans('settings.role_delete_no_migration')]);
 107         $roles->prepend($blankRole);
 108         return view('settings/roles/delete', ['role' => $role, 'roles' => $roles]);
 109     }
 110
 111     /**
 112      * Delete a role from the system,
 113      * Migrate from a previous role if set.
 114      * @param $id
 115      * @param Request $request
 116      * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
 117      */
 118     public function deleteRole($id, Request $request)
 119     {
 120         $this->checkPermission('user-roles-manage');
 121
 122         try {
 123             $this->permissionsRepo->deleteRole($id, $request->get('migrate_role_id'));
 124         } catch (PermissionsException $e) {
 125             session()->flash('error', $e->getMessage());
 126             return redirect()->back();
 127         }
 128
 129         session()->flash('success', trans('settings.role_delete_success'));
 130         return redirect('/settings/roles');
 131     }
 132 }