new release with permissions

sarthaksavvy · sarthaksavvy · commit 2b91e2d49c9f · 2019-12-25T23:18:53.000+05:30
diff --git a/.gitignore b/.gitignore
@@ -4,4 +4,5 @@ composer.lock
 .DS_Store
 .idea
 .php_cs.cache
-.phpunit.result.cache
+.phpunit.result.cache
+/node_modules
diff --git a/.phpunit.result.cache b/.phpunit.result.cache
diff --git a/src/Console/Commands/Install.php b/src/Console/Commands/Install.php
@@ -47,11 +47,12 @@ public function handle()
 
     protected function publishAssets()
     {
-        $this->warn('1. Publishing Migrations');
-        Artisan::call('vendor:publish --tag=multiauth:migrations');
+        $this->warn('1. Publishing Configurations');
+        Artisan::call('vendor:publish --tag=multiauth:config');
         $this->info(Artisan::output());
-        $this->warn('2. Publishing Factories');
-        Artisan::call('vendor:publish --tag=multiauth:factories');
+
+        $this->warn('2. Publishing Migrations');
+        Artisan::call('vendor:publish --tag=multiauth:migrations');
         $this->info(Artisan::output());
     }
 
diff --git a/src/Console/Commands/PermissionCommand.php b/src/Console/Commands/PermissionCommand.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace Bitfumes\Multiauth\Console\Commands;
+
+use Illuminate\Console\Command;
+
+class PermissionCommand extends Command
+{
+    /**
+     * The name and signature of the console command.
+     *
+     * @var string
+     */
+    protected $signature = 'multiauth:permissions {model} {--name=}';
+    /**
+     * The console command description.
+     *
+     * @var string
+     */
+    protected $description = 'Create permission CRUD part for given model';
+
+    /**
+     * Create a new command instance.
+     *
+     * @return void
+     */
+    public function __construct()
+    {
+        parent::__construct();
+    }
+
+    /**
+     * Execute the console command.
+     *
+     * @return mixed
+     */
+    public function handle()
+    {
+        $model                 = $this->argument('model');
+        $permissionModel       = config('multiauth.models.permission');
+        if ($name = $this->option('name')) {
+            $tasks = [$name];
+        } else {
+            $tasks = ['Create', 'Read', 'Update', 'Delete'];
+        }
+
+        foreach ($tasks as $task) {
+            $name       = "{$task}{$model}";
+            $permission = $permissionModel::create(['name' => $name, 'parent'=>$model]);
+            $this->info("created $name permission,");
+        }
+
+        $this->info('Done.');
+    }
+}
diff --git a/src/Console/Commands/PermissionSeed.php b/src/Console/Commands/PermissionSeed.php
diff --git a/src/Console/Commands/SeedCmd.php b/src/Console/Commands/SeedCmd.php
@@ -62,10 +62,14 @@ public function handle()
     protected function createSuperAdmin($role, $rolename)
     {
         $prefix = config('multiauth.prefix');
-        $admin  = factory($this->adminModel)
-            ->create(['email' => "super@{$prefix}.com", 'name' => 'Super ' . ucfirst($prefix)]);
+        $admin  = $this->adminModel::create([
+            'email'    => "super@{$prefix}.com",
+            'name'     => 'Super ' . ucfirst($prefix),
+            'password' => bcrypt('secret123'),
+            'active'   => true,
+        ]);
         if (!$role) {
-            $role                = factory($this->roleModel)->create(['name' => $rolename]);
+            $role = $this->roleModel::create(['name' => $rolename]);
             $this->createAndLinkPermissionsTo($role);
         }
         $admin->roles()->attach($role);
@@ -80,7 +84,7 @@ protected function createAndLinkPermissionsTo($role)
         foreach ($tasks as $task) {
             foreach ($models as $model) {
                 $name       = "{$task}{$model}";
-                $permission = factory($this->permissionModel)->create(['name' => $name, 'parent'=>$model]);
+                $permission = $this->permissionModel::create(['name' => $name, 'parent'=>$model]);
                 $role->addPermission([$permission->id]);
             }
         }
diff --git a/src/Events/NotifyAdmin.php b/src/Events/NotifyAdmin.php
diff --git a/src/Http/Middleware/AdminPermitTo.php b/src/Http/Middleware/AdminPermitTo.php
@@ -0,0 +1,34 @@
+<?php
+
+namespace Bitfumes\Multiauth\Http\Middleware;
+
+use Closure;
+
+class AdminPermitTo
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return mixed
+     */
+    public function handle($request, Closure $next, $permission)
+    {
+        $permissions = auth('admin')->user()->allPermissions();
+
+        $permissions = array_map(function ($permission) {
+            return $permission['name'];
+        }, $permissions);
+
+        $given_permissions = explode(';', $permission);
+
+        $match             = count(array_intersect($given_permissions, $permissions));
+
+        if (!$match) {
+            return redirect(route('admin.login'));
+        }
+
+        return $next($request);
+    }
+}
diff --git a/src/Http/Middleware/AdminPermitToParent.php b/src/Http/Middleware/AdminPermitToParent.php
@@ -0,0 +1,34 @@
+<?php
+
+namespace Bitfumes\Multiauth\Http\Middleware;
+
+use Closure;
+
+class AdminPermitToParent
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return mixed
+     */
+    public function handle($request, Closure $next, $permission)
+    {
+        $permissions = auth('admin')->user()->allPermissions();
+
+        $permissions = array_map(function ($permission) {
+            return $permission['parent'];
+        }, $permissions);
+
+        $given_permissions = explode(';', $permission);
+
+        $match = count(array_intersect($given_permissions, $permissions));
+
+        if (!$match) {
+            return redirect(route('admin.login'));
+        }
+
+        return $next($request);
+    }
+}
diff --git a/src/Http/Middleware/redirectIfNotWithRoleOfAdmin.php b/src/Http/Middleware/redirectIfNotWithRoleOfAdmin.php
@@ -0,0 +1,41 @@
+<?php
+
+namespace Bitfumes\Multiauth\Http\Middleware;
+
+use Auth;
+use Closure;
+
+class redirectIfNotWithRoleOfAdmin
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param \Illuminate\Http\Request $request
+     * @param \Closure                 $next
+     * @param string                   $role
+     *
+     * @return mixed
+     */
+    public function handle($request, Closure $next, $role = 'super')
+    {
+        // If not logged in, redirect to the login page.
+        if (!auth('admin')->user()) {
+            return redirect(route('admin.login'));
+        }
+
+        $roles = auth('admin')->user()->roles()->pluck('name');
+        if (in_array('super', $roles->toArray())) {
+            return $next($request);
+        }
+
+        $given_role = explode(';', $role);
+
+        $match = count(array_intersect($given_role, $roles->toArray()));
+
+        if (!$match) {
+            return redirect(route('admin.home'));
+        }
+
+        return $next($request);
+    }
+}
diff --git a/src/MultiauthServiceProvider.php b/src/MultiauthServiceProvider.php
@@ -9,11 +9,14 @@
 use Bitfumes\Multiauth\Console\Commands\RoleCmd;
 use Bitfumes\Multiauth\Console\Commands\SeedCmd;
 use Bitfumes\Multiauth\Exception\MultiAuthHandler;
+use Bitfumes\Multiauth\Http\Middleware\AdminPermitTo;
 use Bitfumes\Multiauth\Providers\AuthServiceProvider;
-use Bitfumes\Multiauth\Console\Commands\PermissionSeed;
+use Bitfumes\Multiauth\Console\Commands\PermissionCommand;
+use Bitfumes\Multiauth\Http\Middleware\AdminPermitToParent;
 use Bitfumes\Multiauth\Console\Commands\MakeMultiAuthCommand;
 use Bitfumes\Multiauth\Console\Commands\RollbackMultiAuthCommand;
 use Bitfumes\Multiauth\Http\Middleware\redirectIfAuthenticatedAdmin;
+use Bitfumes\Multiauth\Http\Middleware\redirectIfNotWithRoleOfAdmin;
 
 class MultiauthServiceProvider extends ServiceProvider
 {
@@ -92,6 +95,9 @@ protected function loadRoutesFrom($path)
     protected function loadMiddleware()
     {
         app('router')->aliasMiddleware('admin', redirectIfAuthenticatedAdmin::class);
+        app('router')->aliasMiddleware('role', redirectIfNotWithRoleOfAdmin::class);
+        app('router')->aliasMiddleware('permitTo', AdminPermitTo::class);
+        app('router')->aliasMiddleware('permitToParent', AdminPermitToParent::class);
     }
 
     protected function registerExceptionHandler()
@@ -155,7 +161,7 @@ protected function loadCommands()
             $this->commands([
                 MakeMultiAuthCommand::class,
                 RollbackMultiAuthCommand::class,
-                PermissionSeed::class,
+                PermissionCommand::class,
                 Install::class,
             ]);
         }
diff --git a/src/Traits/hasPermissions.php b/src/Traits/hasPermissions.php
@@ -1,6 +1,6 @@
 <?php
 
-namespace Bitfumes\Multiauth\traits;
+namespace Bitfumes\Multiauth\Traits;
 
 use Illuminate\Support\Collection;
 use Bitfumes\Multiauth\Model\Permission;
diff --git a/src/database/factories/AdminFactory.php b/src/database/factories/AdminFactory.php
@@ -1,10 +1,9 @@
 <?php
 
 use Illuminate\Support\Str;
+use Bitfumes\Multiauth\Model\Admin;
 
-/* @var \Illuminate\Database\Eloquent\Factory $factory */
-$adminModel = config('multiauth.models.admin');
-$factory->define($adminModel, function (Faker\Generator $faker) {
+$factory->define(Admin::class, function (Faker\Generator $faker) {
     return [
         'name'           => $faker->name,
         'email'          => $faker->unique()->safeEmail,
diff --git a/src/database/factories/PermissionFactory.php b/src/database/factories/PermissionFactory.php
@@ -1,9 +1,9 @@
 <?php
 
 use Faker\Generator as Faker;
+use Bitfumes\Multiauth\Model\Permission;
 
-$permissionModel = config('multiauth.models.permission');
-$factory->define($permissionModel, function (Faker $faker) {
+$factory->define(Permission::class, function (Faker $faker) {
     return [
         'name' => $faker->word,
     ];
diff --git a/src/database/factories/RoleFactory.php b/src/database/factories/RoleFactory.php
@@ -1,8 +1,8 @@
 <?php
 
-/* @var \Illuminate\Database\Eloquent\Factory $factory */
-$roleModel = config('multiauth.models.role');
-$factory->define($roleModel, function (Faker\Generator $faker) {
+use Bitfumes\Multiauth\Model\Role;
+
+$factory->define(Role::class, function (Faker\Generator $faker) {
     return [
         'name' => $faker->word,
     ];
