BookStack Code Mirror - bookstack/blob - app/Http/Controllers/PermissionController.php

1 <?php namespace BookStack\Http\Controllers;

3 use BookStack\Exceptions\PermissionsException;

4 use BookStack\Repos\PermissionsRepo;

5 use BookStack\Services\PermissionService;

6 use Illuminate\Http\Request;

7 use BookStack\Http\Requests;

9 class PermissionController extends Controller

10 {

12 protected $permissionsRepo;

14 /**

15 * PermissionController constructor.

16 * @param PermissionsRepo $permissionsRepo

17 */

18 public function __construct(PermissionsRepo $permissionsRepo)

19 {

20 $this->permissionsRepo = $permissionsRepo;

21 parent::__construct();

22 }

24 /**

25 * Show a listing of the roles in the system.

26 */

27 public function listRoles()

28 {

29 $this->checkPermission('user-roles-manage');

30 $roles = $this->permissionsRepo->getAllRoles();

31 return view('settings/roles/index', ['roles' => $roles]);

32 }

34 /**

35 * Show the form to create a new role

36 * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View

37 */

38 public function createRole()

39 {

40 $this->checkPermission('user-roles-manage');

41 return view('settings/roles/create');

42 }

44 /**

45 * Store a new role in the system.

46 * @param Request $request

47 * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector

48 */

49 public function storeRole(Request $request)

50 {

51 $this->checkPermission('user-roles-manage');

52 $this->validate($request, [

53 'display_name' => 'required|min:3|max:200',

54 'description' => 'max:250'

55 ]);

57 $this->permissionsRepo->saveNewRole($request->all());

58 session()->flash('success', 'Role successfully created');

59 return redirect('/settings/roles');

60 }

62 /**

63 * Show the form for editing a user role.

64 * @param $id

65 * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View

66 * @throws PermissionsException

67 */

68 public function editRole($id)

69 {

70 $this->checkPermission('user-roles-manage');

71 $role = $this->permissionsRepo->getRoleById($id);

72 if ($role->hidden) throw new PermissionsException('This role cannot be edited');

73 return view('settings/roles/edit', ['role' => $role]);

74 }

76 /**

77 * Updates a user role.

78 * @param $id

79 * @param Request $request

80 * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector

81 */

82 public function updateRole($id, Request $request)

83 {

84 $this->checkPermission('user-roles-manage');

85 $this->validate($request, [

86 'display_name' => 'required|min:3|max:200',

87 'description' => 'max:250'

88 ]);

90 $this->permissionsRepo->updateRole($id, $request->all());

91 session()->flash('success', 'Role successfully updated');

92 return redirect('/settings/roles');

93 }

95 /**

96 * Show the view to delete a role.

97 * Offers the chance to migrate users.

98 * @param $id

99 * @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View

100 */

101 public function showDeleteRole($id)

102 {

103 $this->checkPermission('user-roles-manage');

104 $role = $this->permissionsRepo->getRoleById($id);

105 $roles = $this->permissionsRepo->getAllRolesExcept($role);

106 $blankRole = $role->newInstance(['display_name' => 'Don\'t migrate users']);

107 $roles->prepend($blankRole);

108 return view('settings/roles/delete', ['role' => $role, 'roles' => $roles]);

109 }

110

111 /**

112 * Delete a role from the system,

113 * Migrate from a previous role if set.

114 * @param $id

115 * @param Request $request

116 * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector

117 */

118 public function deleteRole($id, Request $request)

119 {

120 $this->checkPermission('user-roles-manage');

121

122 try {

123 $this->permissionsRepo->deleteRole($id, $request->get('migrate_role_id'));

124 } catch (PermissionsException $e) {

125 session()->flash('error', $e->getMessage());

126 return redirect()->back();

127 }

128

129 session()->flash('success', 'Role successfully deleted');

130 return redirect('/settings/roles');

131 }

132 }