feat: added the ability to generate permissions

Given Ncube · Given Ncube · commit 765a20a9da62 · 2022-08-23T15:34:47.000+02:00
diff --git a/composer.json b/composer.json
@@ -26,7 +26,7 @@
         "laravel/pint": "^1.0",
         "nunomaduro/collision": "^6.2",
         "nunomaduro/larastan": "^2.0.1",
-        "orchestra/testbench": "^7.0",
+        "orchestra/testbench": "^7.6",
         "pestphp/pest": "^1.21",
         "pestphp/pest-plugin-laravel": "^1.1",
         "phpstan/extension-installer": "^1.1",
diff --git a/config/authorizer.php b/config/authorizer.php
@@ -1,6 +1,15 @@
 <?php
 
-// config for FlixtechsLabs/LaravelAuthorizer
 return [
-
+    'permissions' => [
+        'create',
+        'update',
+        'delete',
+        'view all',
+        'view',
+        'view own',
+        'force delete',
+        'restore',
+        'restore own',
+    ],
 ];
diff --git a/database/database.sqlite b/database/database.sqlite
diff --git a/phpunit.xml.dist b/phpunit.xml.dist
@@ -36,4 +36,9 @@
     <logging>
         <junit outputFile="build/report.junit.xml"/>
     </logging>
+
+    <php>
+        <env name="DB_CONNECTION" value="testing"/>
+        <env name="DB_DATABASE" value="database/database.sqlite"/>
+    </php>
 </phpunit>
diff --git a/src/Commands/GeneratePermissionsCommand.php b/src/Commands/GeneratePermissionsCommand.php
@@ -0,0 +1,127 @@
+<?php
+
+namespace FlixtechsLabs\LaravelAuthorizer\Commands;
+
+use Illuminate\Console\Command;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Support\Collection;
+use Illuminate\Support\Facades\File;
+use Illuminate\Support\Facades\Storage;
+use Illuminate\Support\Str;
+use ReflectionClass;
+use ReflectionException;
+use Spatie\Permission\Models\Permission;
+use SplFileInfo;
+use Symfony\Component\Filesystem\Filesystem;
+
+class GeneratePermissionsCommand extends Command
+{
+    /**
+     * The name and signature of the console command.
+     *
+     * @var string
+     */
+    protected $signature = 'authorizer:permissions:generate {--m|model= : The model to use for the policy}';
+
+    /**
+     * The console command description.
+     *
+     * @var string
+     */
+    protected $description = 'Generate permissions for your application';
+
+    /**
+     * Run the command.
+     * @return int
+     */
+    public function handle(): int
+    {
+        $this->comment('Generating permissions...');
+
+        $model = $this->option('model');
+
+        if (is_null($model)) {
+            $this->generatePermissionsForAllModels();
+
+            return self::SUCCESS;
+        }
+
+        $this->generatePermissions($model);
+
+        return self::SUCCESS;
+    }
+
+    /**
+     * Generate all permissions.
+     */
+    protected function generatePermissionsForAllModels(): void
+    {
+        $models = $this->getModels();
+
+        $models->each(fn(string $model) => $this->generatePermissions($model));
+    }
+
+    /**
+     * Generate permission for a given model.
+     *
+     * @param string $model
+     * @return void
+     */
+    public function generatePermissions(string $model): void
+    {
+        $permissions = config('authorizer.permissions');
+
+        collect($permissions)->each(
+            fn(string $permission) => $this->generatePermission(
+                $model,
+                $permission
+            )
+        );
+    }
+
+    public function generatePermission(string $model, string $permission)
+    {
+        if (
+            Str::contains($permission, 'any') ||
+            Str::contains($permission, 'all')
+        ) {
+            return Permission::updateOrCreate([
+                'name' => $permission . ' ' . Str::plural(Str::lower($model)),
+            ]);
+        }
+
+        return Permission::updateOrCreate([
+            'name' => $permission . ' ' . Str::lower($model),
+        ]);
+    }
+
+    /**
+     * Get all models.
+     *
+     * @return array
+     */
+    public function getModels(): array|Collection
+    {
+        return collect(File::allFiles(app_path()))
+            ->map(function (SplFileInfo $info) {
+                $path = $info->getRelativePathname();
+
+                return sprintf(
+                    '\%s%s',
+                    app()->getNamespace(),
+                    Str::replace('/', '\\', Str::beforeLast($path, '.'))
+                );
+            })
+            ->filter(function (string $class) {
+                try {
+                    $reflection = new ReflectionClass($class);
+                } catch (ReflectionException $throwable) {
+                    return false;
+                }
+
+                return $reflection->isSubclassOf(Model::class) &&
+                    !$reflection->isAbstract();
+            })
+            ->map(fn($model) => Str::afterLast($model, '\\'));
+    }
+}
diff --git a/src/LaravelAuthorizerServiceProvider.php b/src/LaravelAuthorizerServiceProvider.php
@@ -2,6 +2,7 @@
 
 namespace FlixtechsLabs\LaravelAuthorizer;
 
+use FlixtechsLabs\LaravelAuthorizer\Commands\GeneratePermissionsCommand;
 use Illuminate\Foundation\Console\AboutCommand;
 use FlixtechsLabs\LaravelAuthorizer\Commands\LaravelAuthorizerCommand;
 use Spatie\LaravelPackageTools\Package;
@@ -21,7 +22,10 @@ public function configurePackage(Package $package): void
             ->hasConfigFile()
             ->hasViews()
             ->hasMigration('create_laravel-authorizer_table')
-            ->hasCommand(LaravelAuthorizerCommand::class);
+            ->hasCommands([
+                LaravelAuthorizerCommand::class,
+                GeneratePermissionsCommand::class,
+            ]);
     }
 
     public function boot()
diff --git a/tests/GeneratePermissionsTest.php b/tests/GeneratePermissionsTest.php
@@ -0,0 +1,88 @@
+<?php
+
+namespace FlixtechsLabs\LaravelAuthorizer\Tests;
+
+use FlixtechsLabs\LaravelAuthorizer\Commands\GeneratePermissionsCommand;
+use function Pest\Laravel\assertDatabaseHas;
+use function Pest\Laravel\assertDatabaseMissing;
+
+it('can generate permissions', function () {
+    collect([
+        'User',
+        'Post',
+        'Comment',
+        'Tag',
+        'Product',
+        'Category',
+        'Order',
+        'OrderItem',
+    ])->each(
+        fn($model) => $this->artisan('make:model', [
+            'name' => $model,
+        ])
+    );
+
+    $this->artisan(GeneratePermissionsCommand::class)
+        ->expectsOutput('Generating permissions...')
+        ->assertSuccessful();
+
+    assertDatabaseHas('permissions', [
+        'name' => 'create post',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'update post',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'delete post',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'create comment',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'update comment',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'delete comment',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'create tag',
+    ]);
+    assertDatabaseHas('permissions', [
+        'name' => 'update tag',
+    ]);
+});
+
+it('can generate permission for just one model', function () {
+    collect([
+        'User',
+        'Post',
+        'Comment',
+        'Tag',
+        'Product',
+        'Category',
+        'Order',
+        'OrderItem',
+    ])->each(
+        fn($model) => $this->artisan('make:model', [
+            'name' => $model,
+        ])
+    );
+
+    $this->artisan(GeneratePermissionsCommand::class, [
+        '--model' => 'Post',
+    ])
+        ->expectsOutput('Generating permissions...')
+        ->assertSuccessful();
+
+    assertDatabaseHas('permissions', [
+        'name' => 'create post',
+    ]);
+
+    assertDatabaseHas('permissions', [
+        'name' => 'update post',
+    ]);
+
+    assertDatabaseMissing('permissions', [
+        'name' => 'delete tag',
+    ]);
+});
diff --git a/tests/TestCase.php b/tests/TestCase.php
@@ -6,6 +6,7 @@
 use Illuminate\Database\Eloquent\Factories\Factory;
 use Illuminate\Support\Facades\File;
 use Orchestra\Testbench\TestCase as Orchestra;
+use Spatie\Permission\PermissionServiceProvider;
 
 class TestCase extends Orchestra
 {
@@ -16,6 +17,7 @@ protected function setUp(): void
         $this->beforeApplicationDestroyed(function () {
             File::cleanDirectory(app_path('Models'));
             File::cleanDirectory(app_path('Policies'));
+            File::deleteDirectory(app_path('Policies'));
         });
 
         Factory::guessFactoryNamesUsing(
@@ -41,4 +43,27 @@ public function getEnvironmentSetUp($app)
         $migration->up();
         */
     }
+
+    public function defineDatabaseMigrations()
+    {
+        $this->artisan('vendor:publish', [
+            '--provider' => PermissionServiceProvider::class,
+        ]);
+
+        $this->artisan('migrate:fresh')->run();
+
+        $this->beforeApplicationDestroyed(function () {
+            $this->artisan('migrate:rollback')->run();
+        });
+    }
+
+    /**
+     * Ignore package discovery from.
+     *
+     * @return array<int, array>
+     */
+    public function ignorePackageDiscoveriesFrom(): array
+    {
+        return [];
+    }
 }
