bookstack/app/Users/Controllers/RoleApiController.php

<?php

namespace BookStack\Users\Controllers;

use BookStack\Http\ApiController;
use BookStack\Permissions\PermissionsRepo;
use BookStack\Users\Models\Role;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;

class RoleApiController extends ApiController
{
    protected PermissionsRepo $permissionsRepo;

    protected array $fieldsToExpose = [
        'display_name', 'description', 'mfa_enforced', 'external_auth_id', 'created_at', 'updated_at',
    ];

    protected $rules = [
        'create' => [
            'display_name'  => ['required', 'string', 'min:3', 'max:180'],
            'description'   => ['string', 'max:180'],
            'mfa_enforced'  => ['boolean'],
            'external_auth_id' => ['string', 'max:180'],
            'permissions'   => ['array'],
            'permissions.*' => ['string'],
        ],
        'update' => [
            'display_name'  => ['string', 'min:3', 'max:180'],
            'description'   => ['string', 'max:180'],
            'mfa_enforced'  => ['boolean'],
            'external_auth_id' => ['string', 'max:180'],
            'permissions'   => ['array'],
            'permissions.*' => ['string'],
        ]
    ];

    public function __construct(PermissionsRepo $permissionsRepo)
    {
        $this->permissionsRepo = $permissionsRepo;

        // Checks for all endpoints in this controller
        $this->middleware(function ($request, $next) {
            $this->checkPermission('user-roles-manage');

            return $next($request);
        });
    }

    /**
     * Get a listing of roles in the system.
     * Requires permission to manage roles.
     */
    public function list()
    {
        $roles = Role::query()->select(['*'])
            ->withCount(['users', 'permissions']);

        return $this->apiListingResponse($roles, [
            ...$this->fieldsToExpose,
            'permissions_count',
            'users_count',
        ]);
    }

    /**
     * Create a new role in the system.
     * Permissions should be provided as an array of permission name strings.
     * Requires permission to manage roles.
     */
    public function create(Request $request)
    {
        $data = $this->validate($request, $this->rules()['create']);

        $role = null;
        DB::transaction(function () use ($data, &$role) {
            $role = $this->permissionsRepo->saveNewRole($data);
        });

        $this->singleFormatter($role);

        return response()->json($role);
    }

    /**
     * View the details of a single role.
     * Provides the permissions and a high-level list of the users assigned.
     * Requires permission to manage roles.
     */
    public function read(string $id)
    {
        $role = $this->permissionsRepo->getRoleById($id);
        $this->singleFormatter($role);

        return response()->json($role);
    }

    /**
     * Update an existing role in the system.
     * Permissions should be provided as an array of permission name strings.
     * An empty "permissions" array would clear granted permissions.
     * In many cases, where permissions are changed, you'll want to fetch the existing
     * permissions and then modify before providing in your update request.
     * Requires permission to manage roles.
     */
    public function update(Request $request, string $id)
    {
        $data = $this->validate($request, $this->rules()['update']);
        $role = $this->permissionsRepo->updateRole($id, $data);

        $this->singleFormatter($role);

        return response()->json($role);
    }

    /**
     * Delete a role from the system.
     * Requires permission to manage roles.
     */
    public function delete(string $id)
    {
        $this->permissionsRepo->deleteRole(intval($id));

        return response('', 204);
    }

    /**
     * Format the given role model for single-result display.
     */
    protected function singleFormatter(Role $role)
    {
        $role->load('users:id,name,slug');
        $role->unsetRelation('permissions');
        $role->setAttribute('permissions', $role->permissions()->orderBy('name', 'asc')->pluck('name'));
        $role->makeVisible(['users', 'permissions']);
    }
}
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`<?php`

Played around with a new app structure 2023-05-18 00:56:55 +08:00			`namespace BookStack\Users\Controllers;`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00
Cleaned up namespacing in routes Also moved home controller and moved controllers up a level in http. 2023-05-19 03:53:39 +08:00			`use BookStack\Http\ApiController;`
Played around with a new app structure 2023-05-18 00:56:55 +08:00			`use BookStack\Permissions\PermissionsRepo;`
			`use BookStack\Users\Models\Role;`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`use Illuminate\Http\Request;`
			`use Illuminate\Support\Facades\DB;`

			`class RoleApiController extends ApiController`
			`{`
			`protected PermissionsRepo $permissionsRepo;`

			`protected array $fieldsToExpose = [`
			`'display_name', 'description', 'mfa_enforced', 'external_auth_id', 'created_at', 'updated_at',`
			`];`

			`protected $rules = [`
			`'create' => [`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`'display_name' => ['required', 'string', 'min:3', 'max:180'],`
			`'description' => ['string', 'max:180'],`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`'mfa_enforced' => ['boolean'],`
Roles: Added max validation for role external auth id field For #5037 2024-06-09 03:33:34 +08:00			`'external_auth_id' => ['string', 'max:180'],`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`'permissions' => ['array'],`
			`'permissions.*' => ['string'],`
			`],`
			`'update' => [`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`'display_name' => ['string', 'min:3', 'max:180'],`
			`'description' => ['string', 'max:180'],`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`'mfa_enforced' => ['boolean'],`
Roles: Added max validation for role external auth id field For #5037 2024-06-09 03:33:34 +08:00			`'external_auth_id' => ['string', 'max:180'],`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`'permissions' => ['array'],`
			`'permissions.*' => ['string'],`
			`]`
			`];`

			`public function __construct(PermissionsRepo $permissionsRepo)`
			`{`
			`$this->permissionsRepo = $permissionsRepo;`

			`// Checks for all endpoints in this controller`
			`$this->middleware(function ($request, $next) {`
			`$this->checkPermission('user-roles-manage');`

			`return $next($request);`
			`});`
			`}`

			`/**`
			`* Get a listing of roles in the system.`
			`* Requires permission to manage roles.`
			`*/`
			`public function list()`
			`{`
			`$roles = Role::query()->select(['*'])`
			`->withCount(['users', 'permissions']);`

			`return $this->apiListingResponse($roles, [`
			`...$this->fieldsToExpose,`
			`'permissions_count',`
			`'users_count',`
			`]);`
			`}`

			`/**`
			`* Create a new role in the system.`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`* Permissions should be provided as an array of permission name strings.`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`* Requires permission to manage roles.`
			`*/`
			`public function create(Request $request)`
			`{`
			`$data = $this->validate($request, $this->rules()['create']);`

			`$role = null;`
			`DB::transaction(function () use ($data, &$role) {`
			`$role = $this->permissionsRepo->saveNewRole($data);`
			`});`

			`$this->singleFormatter($role);`

			`return response()->json($role);`
			`}`

			`/**`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`* View the details of a single role.`
			`* Provides the permissions and a high-level list of the users assigned.`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`* Requires permission to manage roles.`
			`*/`
			`public function read(string $id)`
			`{`
Started Image API build 2023-03-14 20:19:19 +08:00			`$role = $this->permissionsRepo->getRoleById($id);`
			`$this->singleFormatter($role);`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00
Started Image API build 2023-03-14 20:19:19 +08:00			`return response()->json($role);`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`}`

			`/**`
			`* Update an existing role in the system.`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`* Permissions should be provided as an array of permission name strings.`
			`* An empty "permissions" array would clear granted permissions.`
			`* In many cases, where permissions are changed, you'll want to fetch the existing`
			`* permissions and then modify before providing in your update request.`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`* Requires permission to manage roles.`
			`*/`
			`public function update(Request $request, string $id)`
			`{`
			`$data = $this->validate($request, $this->rules()['update']);`
			`$role = $this->permissionsRepo->updateRole($id, $data);`

			`$this->singleFormatter($role);`

			`return response()->json($role);`
			`}`

			`/**`
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing. 2023-02-19 23:58:29 +08:00			`* Delete a role from the system.`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`* Requires permission to manage roles.`
			`*/`
			`public function delete(string $id)`
			`{`
			`$this->permissionsRepo->deleteRole(intval($id));`

			`return response('', 204);`
			`}`

			`/**`
			`* Format the given role model for single-result display.`
			`*/`
			`protected function singleFormatter(Role $role)`
			`{`
			`$role->load('users:id,name,slug');`
			`$role->unsetRelation('permissions');`
Set order to role permissions API response 2023-02-19 02:50:01 +08:00			`$role->setAttribute('permissions', $role->permissions()->orderBy('name', 'asc')->pluck('name'));`
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required. 2023-02-19 02:36:34 +08:00			`$role->makeVisible(['users', 'permissions']);`
			`}`
			`}`