Middleware, Admin Checkout

whyalwaysnuew · whyalwaysnuew · commit 830c932eafe3 · 2023-02-03T16:31:00.000+07:00
diff --git a/app/Http/Controllers/Admin/CheckoutController.php b/app/Http/Controllers/Admin/CheckoutController.php
@@ -0,0 +1,18 @@
+<?php
+
+namespace App\Http\Controllers\Admin;
+
+use App\Http\Controllers\Controller;
+use Illuminate\Http\Request;
+use App\Models\Checkout;
+
+class CheckoutController extends Controller
+{
+    public function update(Request $request, Checkout $checkout)
+    {
+        $checkout->is_paid = true;
+        $checkout->save();
+        $request->session()->flash('success', "Checkout {$checkout->Camp->title} by {$checkout->User->name} has been Updated!");
+        return redirect(route('admin.dashboard'));
+    }
+}
diff --git a/app/Http/Controllers/Admin/DashboardController.php b/app/Http/Controllers/Admin/DashboardController.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace App\Http\Controllers\Admin;
+
+use Illuminate\Http\Request;
+use App\Http\Controllers\Controller;
+use App\Models\Checkout;
+use Auth;
+
+class DashboardController extends Controller
+{
+    public function index()
+    {
+        $checkouts = Checkout::with('Camp')->get();
+        return view('admin.dashboard', [
+            'checkouts' => $checkouts
+        ]);
+    }
+}
diff --git a/app/Http/Controllers/HomeController.php b/app/Http/Controllers/HomeController.php
@@ -3,16 +3,20 @@
 namespace App\Http\Controllers;
 
 use Illuminate\Http\Request;
-use App\Models\Checkout;
 use Auth;
 
 class HomeController extends Controller
 {
     public function dashboard()
     {
-        $checkouts = Checkout::with('Camp')->whereUserId(Auth::id())->get();
-        return view('user.dashboard', [
-            'checkouts' => $checkouts
-        ]);
+        switch (Auth::user()->is_admin) {
+            case true:
+                return redirect(route('admin.dashboard'));
+                break;
+            
+            default:
+                return redirect(route('user.dashboard'));
+                break;
+        }
     }
 }
diff --git a/app/Http/Controllers/User/CheckoutController.php b/app/Http/Controllers/User/CheckoutController.php
@@ -32,7 +32,7 @@ public function create(Request $request, Camp $camp)
     {
         if($camp->isRegistered){
             $request->session()->flash('error', "You already registered on {$camp->title}!");
-            return redirect(route('dashboard'));
+            return redirect(route('user.dashboard'));
         }
         return view('checkout.create',[
             'camp' => $camp
diff --git a/app/Http/Controllers/User/DashboardController.php b/app/Http/Controllers/User/DashboardController.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace App\Http\Controllers\User;
+
+use App\Http\Controllers\Controller;
+use Illuminate\Http\Request;
+use App\Models\Checkout;
+use Auth;
+
+class DashboardController extends Controller
+{
+    public function index()
+    {
+        $checkouts = Checkout::with('Camp')->whereUserId(Auth::id())->get();
+        return view('user.dashboard',[
+            'checkouts' => $checkouts
+        ]);
+    }
+}
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
@@ -63,5 +63,6 @@ class Kernel extends HttpKernel
         'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
+        'ensureUserRole' => \App\Http\Middleware\EnsureUserRole::class,
     ];
 }
diff --git a/app/Http/Middleware/EnsureAdminRole.php b/app/Http/Middleware/EnsureAdminRole.php
@@ -0,0 +1,26 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+
+class EnsureAdminRole
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response|\Illuminate\Http\RedirectResponse)  $next
+     * @return \Illuminate\Http\Response|\Illuminate\Http\RedirectResponse
+     */
+    public function handle(Request $request, Closure $next, $role)
+    {
+        $user = Auth::user();
+        if(($role == 'user' && $user->is_admin) || !$role == 'admin' && !$user->is_admin)
+        {
+            abort(403);
+        }
+        return $next($request);
+    }
+}
diff --git a/app/Http/Middleware/EnsureUserRole.php b/app/Http/Middleware/EnsureUserRole.php
@@ -0,0 +1,27 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Auth;
+
+class EnsureUserRole
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure(\Illuminate\Http\Request): (\Illuminate\Http\Response|\Illuminate\Http\RedirectResponse)  $next
+     * @return \Illuminate\Http\Response|\Illuminate\Http\RedirectResponse
+     */
+    public function handle(Request $request, Closure $next, $role)
+    {
+        $user = Auth::user();
+        if(($role == 'admin' && !$user->is_admin) || ($role == 'user' && $user->is_admin))
+        {
+            abort(403);
+        }
+        return $next($request);
+    }
+}
diff --git a/public/frontend/style/main1.css b/public/frontend/style/main1.css
diff --git a/resources/views/admin/dashboard.blade.php b/resources/views/admin/dashboard.blade.php
@@ -0,0 +1,78 @@
+@extends('layouts.app')
+
+@section('title')
+    Dashboard
+@endsection
+
+@section('content')
+    <section class="dashboard my-5">
+        <div class="container">
+            <div class="row text-left">
+                <div class=" col-lg-12 col-12 header-wrap mt-4">
+                    <p class="story">
+                        Checkouts
+                    </p>
+                    <h2 class="primary-header ">
+                        Checkout Lists
+                    </h2>
+                </div>
+            </div>
+            <div class="row my-5">
+                @include('components.alert')
+                <table class="table table-bordered">
+                    <thead class="bg-dark text-white">
+                        <tr class="align-middle">
+                            <th>Camp</th>
+                            <th>Name</th>
+                            <th>Price</th>
+                            <th>Register Date</th>
+                            <th>Paid Status</th>
+                            <th>Action</th>
+                        </tr>
+                    </thead>
+                    <tbody class="bg-light">
+                        @forelse ($checkouts as $checkout)
+                            <tr class="align-middle">
+                                <td>
+                                    {{$checkout->Camp->title}}
+                                </td>
+                                <td>
+                                    {{$checkout->User->name}}
+                                </td>
+                                <td>
+                                    <strong><span class="text-danger">$</span>{{$checkout->Camp->price}},00</strong>
+                                </td>
+                                <td>
+                                    {{$checkout->created_at->format('d M Y')}}
+                                </td>
+                                <td class="text-center">
+                                    @if ($checkout->is_paid)
+                                        <div class="badge bg-success">Success</div>
+                                    @else
+                                        <div class="badge bg-warning">Waiting</div>
+                                    @endif
+                                </td>
+                                <td>
+                                    @if (!$checkout->is_paid)
+                                        <form action="{{route('admin.checkout.update', $checkout->id)}}" method="post">
+                                            @csrf
+                                            <button class="btn btn-primary btn-sm">Set to Paid</button>
+                                        </form>
+                                    @else
+                                        
+                                    @endif
+                                </td>
+                            </tr>
+                        @empty
+                            <tr class="align-middle">
+                                <div class="alert alert-info" role="alert">
+                                    No Data!
+                                </div>
+                            </tr>
+                        @endforelse
+                    </tbody>
+                </table>
+            </div>
+        </div>
+    </section>
+@endsection
diff --git a/resources/views/components/alert.blade.php b/resources/views/components/alert.blade.php
@@ -1,3 +1,17 @@
+@if ($message = Session::get('success'))
+<div class="alert alert-success alert-dismissible d-flex fade show" role="alert">
+    <div class="px-2">
+        <i class="uil uil-check-circle"></i>
+    </div>
+    <div>
+        <strong>
+            {{$message}}
+        </strong>
+    </div>
+    <button class="btn-close" type="button" data-bs-dismiss="alert" aria-label="Close" ></button>
+  </div>
+@endif
+
 @if ($message = Session::get('error'))
 <div class="alert alert-danger alert-dismissible d-flex fade show" role="alert">
     <div class="px-2">
diff --git a/resources/views/components/navbar.blade.php b/resources/views/components/navbar.blade.php
@@ -40,7 +40,11 @@ class="navbar-toggler"
           <div class="d-flex user-logged nav-item dropdown no-arrow">
             <a href="#" id="dropdownMenuLink" data-bs-toggle="dropdown" aria-expanded="false">
                 Halo, {{Auth::user()->name}}!
-                <img src={{Auth::user()->avatar}} class="user-photo rounded-circle" alt="">
+                @if (Auth::user()->avatar)
+                  <img src={{Auth::user()->avatar}} class="user-photo rounded-circle" alt="">
+                @else
+                  <img src="https://ui-avatars.com/?name=Admin" class="user-photo rounded-circle" alt="">
+                @endif
                 <ul class="dropdown-menu" aria-labelledby="dropdownMenuLink" style="right:0; left: auto" >
                   <li>
                     <a href="#" class="dropdown-item">Profile</a>
diff --git a/routes/web.php b/routes/web.php
@@ -4,6 +4,9 @@
 use App\Http\Controllers\HomeController;
 use App\Http\Controllers\UserController;
 use App\Http\Controllers\User\CheckoutController;
+use App\Http\Controllers\User\DashboardController as UserDashboard;
+use App\Http\Controllers\Admin\DashboardController as AdminDashboard;
+use App\Http\Controllers\Admin\CheckoutController as AdminCheckout;
 
 /*
 |--------------------------------------------------------------------------
@@ -33,12 +36,38 @@
 
 Route::middleware('auth')->group(function(){
     // Checkout routes
-    Route::get('checkout/success', [CheckoutController::class, 'success'])->name('checkout.success');
-    Route::get('checkout/{camp:slug}', [CheckoutController::class, 'create'])->name('checkout.create');
-    Route::post('checkout/{camp}', [CheckoutController::class, 'store'])->name('checkout.store');
+    Route::get('checkout/success', [CheckoutController::class, 'success'])
+            ->middleware('ensureUserRole:user')
+            ->name('checkout.success');
+    Route::get('checkout/{camp:slug}', [CheckoutController::class, 'create'])
+            ->middleware('ensureUserRole:user')
+            ->name('checkout.create');
+    Route::post('checkout/{camp}', [CheckoutController::class, 'store'])
+            ->middleware('ensureUserRole:user')
+            ->name('checkout.store');
 
     // 
     Route::get('dashboard', [HomeController::class, 'dashboard'])->name('dashboard');
+    
+    // user dashboard
+    Route::prefix('user/dashboard')->namespace('User')
+            ->middleware('ensureUserRole:user')
+            ->name('user.')->group(function(){
+                Route::get('/', [UserDashboard::class, 'index'])->name('dashboard');
+    });
+
+    // admin dashboard
+    Route::prefix('admin/dashboard')->namespace('Admin')
+            ->middleware('ensureUserRole:admin')
+            ->name('admin.')->group(function(){
+
+        Route::get('/', [AdminDashboard::class, 'index'])
+            ->name('dashboard');
+    
+        // admin checkout
+        Route::post('checkout/{checkout}', [AdminCheckout::class, 'update'])
+            ->name('checkout.update');
+    });
 });
 
 require __DIR__.'/auth.php';

Original file line number	Diff line number	Diff line change
`@@ -3,16 +3,20 @@`
`3`	`3`	`namespace App\Http\Controllers;`
`4`	`4`
`5`	`5`	`use Illuminate\Http\Request;`
`6`		`-use App\Models\Checkout;`
`7`	`6`	`use Auth;`
`8`	`7`
`9`	`8`	`class HomeController extends Controller`
`10`	`9`	`{`
`11`	`10`	`public function dashboard()`
`12`	`11`	`{`
`13`		`- $checkouts = Checkout::with('Camp')->whereUserId(Auth::id())->get();`
`14`		`- return view('user.dashboard', [`
`15`		`- 'checkouts' => $checkouts`
`16`		`- ]);`
	`12`	`+ switch (Auth::user()->is_admin) {`
	`13`	`+ case true:`
	`14`	`+ return redirect(route('admin.dashboard'));`
	`15`	`+ break;`
	`16`	`+`
	`17`	`+ default:`
	`18`	`+ return redirect(route('user.dashboard'));`
	`19`	`+ break;`
	`20`	`+ }`
`17`	`21`	`}`
`18`	`22`	`}`
Original file line number	Diff line number	Diff line change
`@@ -32,7 +32,7 @@ public function create(Request $request, Camp $camp)`
`32`	`32`	`{`
`33`	`33`	`if($camp->isRegistered){`
`34`	`34`	`$request->session()->flash('error', "You already registered on {$camp->title}!");`
`35`		`- return redirect(route('dashboard'));`
	`35`	`+ return redirect(route('user.dashboard'));`
`36`	`36`	`}`
`37`	`37`	`return view('checkout.create',[`
`38`	`38`	`'camp' => $camp`
Original file line number	Diff line number	Diff line change
`@@ -63,5 +63,6 @@ class Kernel extends HttpKernel`
`63`	`63`	`'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,`
`64`	`64`	`'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,`
`65`	`65`	`'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,`
	`66`	`+ 'ensureUserRole' => \App\Http\Middleware\EnsureUserRole::class,`
`66`	`67`	`];`
`67`	`68`	`}`