@@ -31,78 +31,78 @@ |
||
31 | 31 | |
32 | 32 | public function boot() |
33 | 33 | { |
34 | - Gate::define('list', function ($user) { |
|
35 | - return $this->authorize($user, function ($user) { |
|
34 | + Gate::define('list', function($user) { |
|
35 | + return $this->authorize($user, function($user) { |
|
36 | 36 | return $this->userHasRole($user, [UserRole::VIEWONLY, UserRole::PUBLISHER, UserRole::ADMIN]); |
37 | 37 | }); |
38 | 38 | }); |
39 | 39 | |
40 | - Gate::define('edit', function ($user) { |
|
41 | - return $this->authorize($user, function ($user) { |
|
40 | + Gate::define('edit', function($user) { |
|
41 | + return $this->authorize($user, function($user) { |
|
42 | 42 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
43 | 43 | }); |
44 | 44 | }); |
45 | 45 | |
46 | - Gate::define('reorder', function ($user) { |
|
47 | - return $this->authorize($user, function ($user) { |
|
46 | + Gate::define('reorder', function($user) { |
|
47 | + return $this->authorize($user, function($user) { |
|
48 | 48 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
49 | 49 | }); |
50 | 50 | }); |
51 | 51 | |
52 | - Gate::define('publish', function ($user) { |
|
53 | - return $this->authorize($user, function ($user) { |
|
52 | + Gate::define('publish', function($user) { |
|
53 | + return $this->authorize($user, function($user) { |
|
54 | 54 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
55 | 55 | }); |
56 | 56 | }); |
57 | 57 | |
58 | - Gate::define('feature', function ($user) { |
|
59 | - return $this->authorize($user, function ($user) { |
|
58 | + Gate::define('feature', function($user) { |
|
59 | + return $this->authorize($user, function($user) { |
|
60 | 60 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
61 | 61 | }); |
62 | 62 | }); |
63 | 63 | |
64 | - Gate::define('delete', function ($user) { |
|
65 | - return $this->authorize($user, function ($user) { |
|
64 | + Gate::define('delete', function($user) { |
|
65 | + return $this->authorize($user, function($user) { |
|
66 | 66 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
67 | 67 | }); |
68 | 68 | }); |
69 | 69 | |
70 | - Gate::define('duplicate', function ($user) { |
|
71 | - return $this->authorize($user, function ($user) { |
|
70 | + Gate::define('duplicate', function($user) { |
|
71 | + return $this->authorize($user, function($user) { |
|
72 | 72 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
73 | 73 | }); |
74 | 74 | }); |
75 | 75 | |
76 | - Gate::define('upload', function ($user) { |
|
77 | - return $this->authorize($user, function ($user) { |
|
76 | + Gate::define('upload', function($user) { |
|
77 | + return $this->authorize($user, function($user) { |
|
78 | 78 | return $this->userHasRole($user, [UserRole::PUBLISHER, UserRole::ADMIN]); |
79 | 79 | }); |
80 | 80 | }); |
81 | 81 | |
82 | - Gate::define('manage-users', function ($user) { |
|
83 | - return $this->authorize($user, function ($user) { |
|
82 | + Gate::define('manage-users', function($user) { |
|
83 | + return $this->authorize($user, function($user) { |
|
84 | 84 | return $this->userHasRole($user, [UserRole::ADMIN]); |
85 | 85 | }); |
86 | 86 | }); |
87 | 87 | |
88 | 88 | // As an admin, I can edit users, except superadmins |
89 | 89 | // As a non-admin, I can edit myself only |
90 | - Gate::define('edit-user', function ($user, $editedUser = null) { |
|
91 | - return $this->authorize($user, function ($user) use ($editedUser) { |
|
90 | + Gate::define('edit-user', function($user, $editedUser = null) { |
|
91 | + return $this->authorize($user, function($user) use ($editedUser) { |
|
92 | 92 | $editedUserObject = User::find($editedUser); |
93 | 93 | return ($this->userHasRole($user, [UserRole::ADMIN]) || $user->id == $editedUser) |
94 | 94 | && ($editedUserObject ? $editedUserObject->role !== self::SUPERADMIN : true); |
95 | 95 | }); |
96 | 96 | }); |
97 | 97 | |
98 | - Gate::define('publish-user', function ($user) { |
|
99 | - return $this->authorize($user, function ($user) { |
|
98 | + Gate::define('publish-user', function($user) { |
|
99 | + return $this->authorize($user, function($user) { |
|
100 | 100 | $editedUserObject = User::find(request('id')); |
101 | 101 | return $this->userHasRole($user, [UserRole::ADMIN]) && ($editedUserObject ? $user->id !== $editedUserObject->id && $editedUserObject->role !== self::SUPERADMIN : false); |
102 | 102 | }); |
103 | 103 | }); |
104 | 104 | |
105 | - Gate::define('impersonate', function ($user) { |
|
105 | + Gate::define('impersonate', function($user) { |
|
106 | 106 | return $user->role === self::SUPERADMIN; |
107 | 107 | }); |
108 | 108 |