feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled.

2025-08-26 10:27:31 +02:00
parent 5a88377a67
commit 63fcc0ebc3
159 changed files with 3610 additions and 1922 deletions
--- a/app/Policies/TeamPolicy.php
+++ b/app/Policies/TeamPolicy.php
@@ -0,0 +1,104 @@
+<?php
+
+namespace App\Policies;
+
+use App\Models\Team;
+use App\Models\User;
+
+class TeamPolicy
+{
+    /**
+     * Determine whether the user can view any models.
+     */
+    public function viewAny(User $user): bool
+    {
+        return true;
+    }
+
+    /**
+     * Determine whether the user can view the model.
+     */
+    public function view(User $user, Team $team): bool
+    {
+        return $user->teams->contains('id', $team->id);
+    }
+
+    /**
+     * Determine whether the user can create models.
+     */
+    public function create(User $user): bool
+    {
+        // All authenticated users can create teams
+        return true;
+    }
+
+    /**
+     * Determine whether the user can update the model.
+     */
+    public function update(User $user, Team $team): bool
+    {
+        // Only admins and owners can update team settings
+        if (! $user->teams->contains('id', $team->id)) {
+            return false;
+        }
+
+        // return $user->isAdmin() || $user->isOwner();
+        return true;
+    }
+
+    /**
+     * Determine whether the user can delete the model.
+     */
+    public function delete(User $user, Team $team): bool
+    {
+        // Only admins and owners can delete teams
+        if (! $user->teams->contains('id', $team->id)) {
+            return false;
+        }
+
+        // return $user->isAdmin() || $user->isOwner();
+        return true;
+    }
+
+    /**
+     * Determine whether the user can manage team members.
+     */
+    public function manageMembers(User $user, Team $team): bool
+    {
+        // Only admins and owners can manage team members
+        if (! $user->teams->contains('id', $team->id)) {
+            return false;
+        }
+
+        // return $user->isAdmin() || $user->isOwner();
+        return true;
+    }
+
+    /**
+     * Determine whether the user can view admin panel.
+     */
+    public function viewAdmin(User $user, Team $team): bool
+    {
+        // Only admins and owners can view admin panel
+        if (! $user->teams->contains('id', $team->id)) {
+            return false;
+        }
+
+        //  return $user->isAdmin() || $user->isOwner();
+        return true;
+    }
+
+    /**
+     * Determine whether the user can manage invitations.
+     */
+    public function manageInvitations(User $user, Team $team): bool
+    {
+        // Only admins and owners can manage invitations
+        if (! $user->teams->contains('id', $team->id)) {
+            return false;
+        }
+
+        // return $user->isAdmin() || $user->isOwner();
+        return true;
+    }
+}