Home Explore Help
Register Sign In
kevinlan
/
autocde2.0
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Added super admin middleware

moell 11 months ago
parent
4d0ad8962e
commit
cf63c22c14
4 changed files with 50 additions and 27 deletions
Unified View Show Diff Stats
  1. 12 25
      app/Http/Controllers/API/CompanyController.php
  2. 2 0
      app/Http/Kernel.php
  3. 26 0
      app/Http/Middleware/SuperAdmin.php
  4. 10 2
      routes/api.php

+ 12 - 25
app/Http/Controllers/API/CompanyController.php
View File 

@@ -35,19 +35,15 @@ class CompanyController extends Controller
 
 
 
     public function store(CreateOrUpdateRequest $request)
 
     public function store(CreateOrUpdateRequest $request)
 
     {
 
     {
 
-        if(Auth::user()->super_admin){
 
-            $company=new Company();
 
+        $company = new Company();
 
 
 
-            $company->fill([
 
+        $company->fill([
 
             ...$request->all(),
 
             ...$request->all(),
 
         ]);
 
         ]);
 
 
 
         $company->save();
 
         $company->save();
 
-        return $this->created();
 
-        }
 
-
 
-        return $this->forbidden("Operation without permission");
 
 
 
+        return $this->created();
 
     }
 
     }
 
 
 
     public function show(string $id)
 
     public function show(string $id)
 
@@ -58,36 +54,27 @@ class CompanyController extends Controller
 
                 return $this->forbidden("You are not a user under this company");
 
                 return $this->forbidden("You are not a user under this company");
 
             }
 
             }
 
         }
 
         }
 
+
 
         $field = Company::query()->findOrFail($id);
 
         $field = Company::query()->findOrFail($id);
 
 
 
         return new CompanyResource($field);
 
         return new CompanyResource($field);
 
     }
 
     }
 
 
 
     public function update(CreateOrUpdateRequest $request,string $id){
 
     public function update(CreateOrUpdateRequest $request,string $id){
 
-        if(Auth::user()->super_admin) {
 
-            $company = Company::findOrFail($id);
 
-            $company->fill($request->all());
 
-            $company->save();
 
-            return $this->noContent();
 
-        }
 
+        $company = Company::findOrFail($id);
 
 
 
-        return $this->forbidden("Operation without permission");
 
+        $company->fill($request->all());
 
+        $company->save();
 
+
 
+        return $this->noContent();
 
     }
 
     }
 
 
 
 
 
     public function destroy(string $id)
 
     public function destroy(string $id)
 
     {
 
     {
 
-        if(Auth::user()->super_admin) {
 
-            $company = Company::findOrFail($id);
 
-            $company->delete();
 
+        $company = Company::findOrFail($id);
 
+        $company->delete();
 
 
 
-            return $this->noContent();
 
-        }
 
-        return $this->forbidden("Operation without permission");
 
+        return $this->noContent();
 
     }
 
     }
 
-
 
-
 
-
 
-
 
-
 
 }
 
 }

+ 2 - 0
app/Http/Kernel.php
View File 

@@ -3,6 +3,7 @@
 
 namespace App\Http;
 
 namespace App\Http;
 
 
 
 use App\Http\Middleware\CheckPermission;
 
 use App\Http\Middleware\CheckPermission;
 
+use App\Http\Middleware\SuperAdmin;
 
 use Illuminate\Foundation\Http\Kernel as HttpKernel;
 
 use Illuminate\Foundation\Http\Kernel as HttpKernel;
 
 
 
 class Kernel extends HttpKernel
 
 class Kernel extends HttpKernel
 
@@ -66,5 +67,6 @@ class Kernel extends HttpKernel
 
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
 
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
 
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
 
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
 
         'permission' => CheckPermission::class,
 
         'permission' => CheckPermission::class,
 
+        'role.super-admin' => SuperAdmin::class,
 
     ];
 
     ];
 
 }
 
 }

+ 26 - 0
app/Http/Middleware/SuperAdmin.php
View File 

@@ -0,0 +1,26 @@
 
+<?php
 
+
 
+namespace App\Http\Middleware;
 
+
 
+use Closure;
 
+use Illuminate\Http\Request;
 
+use Illuminate\Support\Facades\Auth;
 
+use Symfony\Component\HttpFoundation\Response;
 
+use Symfony\Component\HttpKernel\Exception\HttpException;
 
+
 
+class SuperAdmin
 
+{
 
+    /**
 
+     * Handle an incoming request.
 
+     *
 
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
 
+     */
 
+    public function handle(Request $request, Closure $next): Response
 
+    {
 
+        if (Auth::user()->super_admin) {
 
+            return $next($request);
 
+        }
 
+
 
+        throw new HttpException(403, 'Operation without permission');
 
+    }
 
+}

+ 10 - 2
routes/api.php
View File 

@@ -21,13 +21,18 @@ Route::middleware(['auth:sanctum'])->group(function () {
 
     Route::post("/logout", [API\AuthController::class, "logout"]);
 
     Route::post("/logout", [API\AuthController::class, "logout"]);
 
     Route::get("user/info", [API\UserController::class, 'info'])->name("user.info");
 
     Route::get("user/info", [API\UserController::class, 'info'])->name("user.info");
 
 
 
-    Route::middleware(['permission'])->group(function () {
 
+    // Allow access only to admin role
 
+    Route::middleware(['permission', 'role.super-admin'])->group(function () {
 
         Route::get("config", [API\ConfigController::class, "index"])->name("config.index");
 
         Route::get("config", [API\ConfigController::class, "index"])->name("config.index");
 
         Route::post("config-setting", [API\ConfigController::class, "setting"])->name("config.setting");
 
         Route::post("config-setting", [API\ConfigController::class, "setting"])->name("config.setting");
 
         Route::get("config/message-notification-setting", [API\ConfigController::class, "messageNotificationSetting"])
 
         Route::get("config/message-notification-setting", [API\ConfigController::class, "messageNotificationSetting"])
 
             ->name("config.message-notification-setting");
 
             ->name("config.message-notification-setting");
 
         Route::post("config/message-notification-setting", [API\ConfigController::class, "storeMessageNotificationSetting"])
 
         Route::post("config/message-notification-setting", [API\ConfigController::class, "storeMessageNotificationSetting"])
 
             ->name("config.store-message-notification-setting");
 
             ->name("config.store-message-notification-setting");
 
+
 
+        Route::apiResource("company", API\CompanyController::class)->only([
 
+            'store', 'update', 'destroy'
 
+        ]);
 
     });
 
     });
 
 
 
     Route::middleware(['permission'])->group(function() {
 
     Route::middleware(['permission'])->group(function() {
 
@@ -44,9 +49,12 @@ Route::middleware(['auth:sanctum'])->group(function () {
 
             'task' => API\TaskController::class,
 
             'task' => API\TaskController::class,
 
             'library' => API\LibraryController::class,
 
             'library' => API\LibraryController::class,
 
             'department' => API\DepartmentController::class,
 
             'department' => API\DepartmentController::class,
 
-            'company' => API\CompanyController::class,
 
             'user' => API\UserController::class,
 
             'user' => API\UserController::class,
 
         ]);
 
         ]);
 
+        Route::apiResource("company", API\CompanyController::class)->only([
 
+            'index', 'show'
 
+        ]);
 
+
 
         Route::get("asset/{asset_id}/report",[API\AssetController::class, 'report'])->name('asset.report');
 
         Route::get("asset/{asset_id}/report",[API\AssetController::class, 'report'])->name('asset.report');
 
 
 
         Route::patch("requirement/{requirement_id}/close",[API\RequirementController::class, 'close'])->name('requirement.close');
 
         Route::patch("requirement/{requirement_id}/close",[API\RequirementController::class, 'close'])->name('requirement.close');