<?php
-use BookStack\Auth\Permissions\PermissionService;
+use BookStack\Auth\Permissions\PermissionApplicator;
use BookStack\Auth\User;
use BookStack\Model;
use BookStack\Settings\SettingService;
}
/**
- * Check if the current user has a permission. If an ownable element
- * is passed in the jointPermissions are checked against that particular item.
+ * Check if the current user has a permission.
+ * Checks a generic role permission or, if an ownable model is passed in, it will
+ * check against the given entity model, taking into account entity-level permissions.
*/
function userCan(string $permission, Model $ownable = null): bool
{
}
// Check permission on ownable item
- $permissionService = app(PermissionService::class);
+ $permissions = app(PermissionApplicator::class);
- return $permissionService->checkOwnableUserAccess($ownable, $permission);
+ return $permissions->checkOwnableUserAccess($ownable, $permission);
}
/**
- * Check if the current user has the given permission
- * on any item in the system.
+ * Check if the current user can perform the given action on any items in the system.
+ * Can be provided the class name of an entity to filter ability to that specific entity type.
*/
-function userCanOnAny(string $permission, string $entityClass = null): bool
+function userCanOnAny(string $action, string $entityClass = ''): bool
{
- $permissionService = app(PermissionService::class);
+ $permissions = app(PermissionApplicator::class);
- return $permissionService->checkUserHasPermissionOnAnything($permission, $entityClass);
+ return $permissions->checkUserHasEntityPermissionOnAny($action, $entityClass);
}
/**
projects / bookstack / blobdiff