CREATE: Spatie Permissions

Author: RustamjonUsmonov

app/Http/Controllers/Admin/RoleController.php

@@ -0,0 +1,132 @@
+<?php
+
+namespace App\Http\Controllers\Admin;
+
+use App\Http\Controllers\Controller;
+use App\Http\Requests\RoleCreateRequest;
+use App\Http\Requests\RoleUpdateRequest;
+use DB;
+use Illuminate\Contracts\Foundation\Application;
+use Illuminate\Contracts\View\Factory;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\RedirectResponse;
+use Spatie\Permission\Models\Permission;
+use Spatie\Permission\Models\Role;
+
+class RoleController extends Controller
+{
+    /**
+     * Display a listing of the resource.
+     *
+     * @return void
+     */
+    function __construct()
+    {
+        $this->middleware('permission:role-list|role-create|role-edit|role-delete', ['only' => ['index', 'store']]);
+        $this->middleware('permission:role-create', ['only' => ['create', 'store']]);
+        $this->middleware('permission:role-edit', ['only' => ['edit', 'update']]);
+        $this->middleware('permission:role-delete', ['only' => ['destroy']]);
+    }
+
+    /**
+     * Display a listing of the resource.
+     *
+     * @return Application|Factory|View
+     */
+    public function index()
+    {
+        $roles = Role::orderBy('id', 'DESC')->paginate(15);
+        return view('admin.roles.index', compact('roles'));
+    }
+
+    /**
+     * Show the form for creating a new resource.
+     *
+     * @return Application|Factory|View
+     */
+    public function create()
+    {
+        $permission = Permission::get();
+        return view('admin.roles.create', compact('permission'));
+    }
+
+
+    /**
+     * Store a newly created resource in storage.
+     *
+     * @param RoleCreateRequest $request
+     * @return RedirectResponse
+     */
+    public function store(RoleCreateRequest $request): RedirectResponse
+    {
+        $validated = $request->validated();
+
+        $role = Role::create(['name' => $validated['name']]);
+        $role->syncPermissions($validated['permission']);
+
+        return redirect()->route('roles.index')
+            ->with('message', 'Role created successfully');
+    }
+
+    /**
+     * Display the specified resource.
+     *
+     * @param int $id
+     * @return Application|Factory|View
+     */
+
+    public function show(int $id)
+    {
+        $role = Role::where('id', $id)->with('permissions:name,id')->first();
+        return view('admin.roles.show', compact('role'));
+    }
+
+
+    /**
+     * Show the form for editing the specified resource.
+     *
+     * @param int $id
+     * @return Application|Factory|View
+     */
+
+    public function edit(int $id)
+    {
+        $role = Role::find($id);
+        $permission = Permission::get();
+        $rolePermissions = DB::table("role_has_permissions")->where("role_has_permissions.role_id", $id)
+            ->pluck('role_has_permissions.permission_id', 'role_has_permissions.permission_id')
+            ->all();
+        return view('admin.roles.edit', compact('role', 'permission', 'rolePermissions'));
+    }
+
+    /**
+     * Update the specified resource in storage.
+     *
+     * @param RoleUpdateRequest $request
+     * @param int $id
+     * @return RedirectResponse
+     */
+    public function update(RoleUpdateRequest $request, int $id): RedirectResponse
+    {
+        $validated = $request->validated();
+        $role = Role::find($id);
+        $role->update(['name' => $validated['name']]);
+
+        $role->syncPermissions($validated['permission']);
+        return redirect()->route('roles.index')
+            ->with('message', 'Role updated successfully');
+    }
+
+    /**
+     * Remove the specified resource from storage.
+     *
+     * @param int $id
+     * @return RedirectResponse
+     */
+    public function destroy(int $id): RedirectResponse
+    {
+        DB::table("roles")->where('id', $id)->delete();
+        return redirect()->route('roles.index')
+            ->with('message', 'Role deleted successfully');
+    }
+}

app/Http/Controllers/Admin/UserController.php

@@ -0,0 +1,134 @@
+<?php
+
+namespace App\Http\Controllers\Admin;
+
+use App\Http\Controllers\Controller;
+use App\Http\Requests\UserCreateRequest;
+use App\Http\Requests\UserUpdateRequest;
+use App\Models\User;
+use Illuminate\Contracts\Foundation\Application;
+use Illuminate\Contracts\View\Factory;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Support\Facades\DB;
+use Illuminate\Support\Facades\Hash;
+use Spatie\Permission\Models\Role;
+
+class UserController extends Controller
+{
+    /**
+     * Display a listing of the resource.
+     *
+     * @return Application|Factory|View
+     */
+
+    public function index()
+    {
+        $users = User::with('roles:id,name')->select(['id', 'name'])->paginate();
+        return view('admin.users.index', compact('users'));
+    }
+
+
+    /**
+     * Show the form for creating a new resource.
+     *
+     * @return Application|Factory|View
+     */
+    public function create()
+    {
+        $roles = Role::pluck('name', 'name')->all();
+        return view('admin.users.create', compact('roles'));
+    }
+
+
+    /**
+     * Store a newly created resource in storage.
+     *
+     * @param UserCreateRequest $request
+     * @return RedirectResponse
+     */
+
+    public function store(UserCreateRequest $request): RedirectResponse
+    {
+        $validated = $request->validated();
+        $validated['affiliate_id'] = uniqid();
+        $validated['password'] = Hash::make($validated['password']);
+        $user = User::create($validated);
+        $user->assignRole($request->input('roles'));
+
+        return redirect()->route('users.index')
+            ->with('message', 'User created successfully');
+    }
+
+
+    /**
+     * Display the specified resource.
+     *
+     * @param int $id
+     * @return Application|Factory|View
+     */
+
+    public function show(int $id): View
+    {
+        $user = User::find($id);
+        return view('admin.users.show', compact('user'));
+    }
+
+
+    /**
+     * Show the form for editing the specified resource.
+     *
+     * @param int $id
+     * @return Application|Factory|View
+     */
+
+    public function edit(int $id)
+    {
+        $user = User::find($id);
+        $roles = Role::pluck('name', 'name')->all();
+        $userRole = $user->roles->pluck('name', 'name')->all();
+
+        return view('admin.users.edit', compact('user', 'roles', 'userRole'));
+    }
+
+
+    /**
+     * Update the specified resource in storage.
+     *
+     * @param UserUpdateRequest $request
+     * @param int $id
+     * @return RedirectResponse
+     */
+
+    public function update(UserUpdateRequest $request, int $id): RedirectResponse
+    {
+        $validated = $request->validated();
+
+        $input = $request->all();
+        if ($request->has('password')) {
+            $validated['password'] = Hash::make($input['password']);
+        }
+        $user = User::find($id);
+
+        $user->update($validated);
+        DB::table('model_has_roles')->where('model_id', $id)->delete();
+        $user->assignRole($request->input('roles'));
+        return redirect()->route('users.index')
+            ->with('message', 'User updated successfully');
+    }
+
+
+    /**
+     * Remove the specified resource from storage.
+     *
+     * @param int $id
+     * @return RedirectResponse
+     */
+
+    public function destroy(int $id): RedirectResponse
+    {
+        User::find($id)->delete();
+        return redirect()->route('users.index')
+            ->with('message', 'User deleted successfully');
+    }
+}

app/Http/Controllers/Auth/RegisterController.php

@@ -64,10 +64,12 @@ protected function validator(array $data)
      */
     protected function create(array $data)
     {
-        return User::create([
+        $user= User::create([
             'name' => $data['name'],
             'email' => $data['email'],
             'password' => Hash::make($data['password']),
         ]);
+        $user->assignRole('Модератор');
+        return $user;
     }
 }

app/Http/Kernel.php

@@ -63,5 +63,8 @@ class Kernel extends HttpKernel
         'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
+        'role' => \Spatie\Permission\Middlewares\RoleMiddleware::class,
+        'permission' => \Spatie\Permission\Middlewares\PermissionMiddleware::class,
+        'role_or_permission' => \Spatie\Permission\Middlewares\RoleOrPermissionMiddleware::class,
     ];
 }

app/Http/Requests/RoleCreateRequest.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class RoleCreateRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [
+            'name' => 'required|unique:roles,name',
+            'permission' => 'required',
+        ];
+    }
+}

app/Http/Requests/RoleUpdateRequest.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class RoleUpdateRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [
+            'name' => 'required',
+            'permission' => 'required',
+        ];
+    }
+}

app/Http/Requests/UserCreateRequest.php

@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class UserCreateRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [
+            'name' => ['required', 'max:255', 'string'],
+            'email' => ['required', 'email', 'unique:users'],
+            'password' => ['required', 'confirmed'],
+        ];
+    }
+}