colin
/
bookstack
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
bookstack/app/Users/Controllers/RoleApiController.php

138 lines
4.1 KiB
PHP
Raw Normal View History

Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
<?php
Played around with a new app structure
2023-05-18 00:56:55 +08:00
namespace BookStack\Users\Controllers;
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
Cleaned up namespacing in routes Also moved home controller and moved controllers up a level in http.
2023-05-19 03:53:39 +08:00
use BookStack\Http\ApiController;
Played around with a new app structure
2023-05-18 00:56:55 +08:00
use BookStack\Permissions\PermissionsRepo;
use BookStack\Users\Models\Role;
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
class RoleApiController extends ApiController
{
protected PermissionsRepo $permissionsRepo;
protected array $fieldsToExpose = [
'display_name', 'description', 'mfa_enforced', 'external_auth_id', 'created_at', 'updated_at',
];
protected $rules = [
'create' => [
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
'display_name' => ['required', 'string', 'min:3', 'max:180'],
'description' => ['string', 'max:180'],
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
'mfa_enforced' => ['boolean'],
'external_auth_id' => ['string'],
'permissions' => ['array'],
'permissions.*' => ['string'],
],
'update' => [
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
'display_name' => ['string', 'min:3', 'max:180'],
'description' => ['string', 'max:180'],
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
'mfa_enforced' => ['boolean'],
'external_auth_id' => ['string'],
'permissions' => ['array'],
'permissions.*' => ['string'],
]
];
public function __construct(PermissionsRepo $permissionsRepo)
{
$this->permissionsRepo = $permissionsRepo;
// Checks for all endpoints in this controller
$this->middleware(function ($request, $next) {
$this->checkPermission('user-roles-manage');
return $next($request);
});
}
/**
* Get a listing of roles in the system.
* Requires permission to manage roles.
*/
public function list()
{
$roles = Role::query()->select(['*'])
->withCount(['users', 'permissions']);
return $this->apiListingResponse($roles, [
...$this->fieldsToExpose,
'permissions_count',
'users_count',
]);
}
/**
* Create a new role in the system.
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
* Permissions should be provided as an array of permission name strings.
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
* Requires permission to manage roles.
*/
public function create(Request $request)
{
$data = $this->validate($request, $this->rules()['create']);
$role = null;
DB::transaction(function () use ($data, &$role) {
$role = $this->permissionsRepo->saveNewRole($data);
});
$this->singleFormatter($role);
return response()->json($role);
}
/**
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
* View the details of a single role.
* Provides the permissions and a high-level list of the users assigned.
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
* Requires permission to manage roles.
*/
public function read(string $id)
{
Started Image API build
2023-03-14 20:19:19 +08:00
$role = $this->permissionsRepo->getRoleById($id);
$this->singleFormatter($role);
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
Started Image API build
2023-03-14 20:19:19 +08:00
return response()->json($role);
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
}
/**
* Update an existing role in the system.
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
* Permissions should be provided as an array of permission name strings.
* An empty "permissions" array would clear granted permissions.
* In many cases, where permissions are changed, you'll want to fetch the existing
* permissions and then modify before providing in your update request.
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
* Requires permission to manage roles.
*/
public function update(Request $request, string $id)
{
$data = $this->validate($request, $this->rules()['update']);
$role = $this->permissionsRepo->updateRole($id, $data);
$this->singleFormatter($role);
return response()->json($role);
}
/**
Added role API responses & requests Also applied other slight tweaks and comment updates based upon manual endpoint testing.
2023-02-19 23:58:29 +08:00
* Delete a role from the system.
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
* Requires permission to manage roles.
*/
public function delete(string $id)
{
$this->permissionsRepo->deleteRole(intval($id));
return response('', 204);
}
/**
* Format the given role model for single-result display.
*/
protected function singleFormatter(Role $role)
{
$role->load('users:id,name,slug');
$role->unsetRelation('permissions');
Set order to role permissions API response
2023-02-19 02:50:01 +08:00
$role->setAttribute('permissions', $role->permissions()->orderBy('name', 'asc')->pluck('name'));
Aded roles API controller methods Altered & updated permissions repo, and existing connected RoleController to suit. Also extracts in-app success notifications to auto activity system. Tweaked tests where required.
2023-02-19 02:36:34 +08:00
$role->makeVisible(['users', 'permissions']);
}
}