osb/app/Models/Policies/AccountPolicy.php

90 lines
1.7 KiB
PHP

<?php
namespace App\Models\Policies;
use Illuminate\Auth\Access\HandlesAuthorization;
use App\Models\{Account,User};
class AccountPolicy
{
use HandlesAuthorization;
/**
* Determine whether the user can view the service.
*
* @param User $uo
* @param Account $ao
* @return bool
*/
public function view(User $uo,Account $ao): bool
{
// If this is a service for an account managed by a user.
return ($uo->accounts->pluck('id')->search($ao->id) !== FALSE)
// The user is the wholesaler
OR $uo->isWholesaler()
// The user is the reseller
OR ($uo->all_accounts()->pluck('id')->search($ao->id) !== FALSE);
}
/**
* Determine whether the user can create services.
*
* @param User $uo
* @return bool
*/
public function create(User $uo): bool
{
return TRUE;
}
/**
* Determine whether the user can update the service.
*
* @param User $uo
* @param Account $ao
* @return bool
*/
public function update(User $uo,Account $ao): bool
{
return $uo->isWholesaler();
}
/**
* Determine whether the user can delete the service.
*
* @param User $uo
* @param Account $ao
* @return bool
*/
public function delete(User $uo,Account $ao): bool
{
return $uo->isWholesaler();
}
/**
* Determine whether the user can restore the service.
*
* @param User $uo
* @param Account $ao
* @return bool
*/
public function restore(User $uo,Account $ao): bool
{
return $uo->isWholesaler();
}
/**
* Determine whether the user can permanently delete the service.
*
* @param User $uo
* @param Account $ao
* @return bool
*/
public function forceDelete(User $uo,Account $ao): bool
{
return $uo->isWholesaler();
}
}