wip: add policies

Author: WovenCoast

composer.json

@@ -21,7 +21,8 @@
         "javaabu/helpers": "^1.61",
         "javaabu/translatable": "^1.1",
         "javaabu/menu-builder": "^1.6",
-        "kalnoy/nestedset": "^6.0"
+        "kalnoy/nestedset": "^6.0",
+        "javaabu/auth": "^1.16"
     },
     "require-dev": {
         "laravel/pint": "^1.14",

config/config.php

@@ -10,5 +10,30 @@
     |
     */
 
+    /**
+     * The model classes that are used in this application. You can extend the
+     * classes and override from here
+     */
+    'models'            => [
+        'admin'            => \App\Models\User::class,
+        'user'             => \App\Models\User::class,
+        'post'             => \Javaabu\Cms\Models\Post::class,
+        'post_type'        => \Javaabu\Cms\Models\PostType::class,
+        'category'         => \Javaabu\Cms\Models\Category::class,
+        'category_type'    => \Javaabu\Cms\Models\CategoryType::class,
+    ],
+
+    /**
+     * This config section defines the policies that are used in the CMS package.
+     * Not all applications will be having the same policies, so you can define the
+     * policies that you want to use in the application for CMS models here.
+     */
+    'policies'          => [
+        'post'             => \Javaabu\Cms\Policies\PostPolicy::class,
+        'post_type'        => \Javaabu\Cms\Policies\PostTypePolicy::class,
+        'category'         => \Javaabu\Cms\Policies\CategoryPolicy::class,
+        'category_type'    => \Javaabu\Cms\Policies\CategoryTypePolicy::class,
+    ],
+
     'should_translate' => false,
 ];

src/Cms.php

@@ -56,6 +56,15 @@ public function registerRoutes()
         }
     }
 
+    public function registerAdminRoutes()
+    {
+        if (config('cms.should_translate')) {
+            $this->registerTranslatableAdminRoutes();
+        } else {
+            $this->registerNormalAdminRoutes();
+        }
+    }
+
     public function registerNormalRoutes(): void
     {
         $root_slugs = app(RootSlugsRegistrar::class)->getSlugs();
@@ -76,7 +85,7 @@ public function registerNormalRoutes(): void
         }
     }
 
-    public function registerAdminRoutes(): void
+    public function registerNormalAdminRoutes(): void
     {
         /**
          * Categories
@@ -136,36 +145,41 @@ public function registerTranslatableAdminRoutes()
         Route::group([
             'prefix' => '{language}',
         ], function () {
-            $this->registerAdminRoutes();
+            $this->registerNormalAdminRoutes();
         });
     }
 
-    public function addToSidebar(array $menus = [])
+    public function adminMenuItems(array $menus = [])
     {
         $all_post_types = PostType::all();
 
         foreach ($all_post_types as $post_type) {
             $name = Str::title($post_type->name);
             $children = [
                 MenuItem::make($name)
+                    ->controller(PostsController::class)
                     ->can('view_' . $post_type->permission_slug)
                     ->active(optional(request()->route('post_type'))->slug == $post_type->slug)
-                    ->url(config('cms.should_translate')
-                        ? translate_route('admin.posts.index', $post_type->slug)
-                        : route('admin.posts.index', $post_type->slug)
-                    )
+//                    ->url(config('cms.should_translate')
+//                        ? translate_route('admin.posts.index', $post_type->slug)
+//                        : route('admin.posts.index', $post_type->slug)
+//                    )
+                    ->url(translate_route('admin.posts.index', $post_type->slug))
                     ->icon('zmdi-' . $post_type->icon)
                     ->count(Post::query()->userVisibleForPostType($post_type)->postType($post_type->slug)->pending()),
             ];
 
             if ($post_type->hasFeature(PostTypeFeatures::CATEGORIES)) {
                 $children[] = MenuItem::make(_d(':name Categories', ['name' => Str::singular($name)]))
+                    ->controller(CategoriesController::class)
                     ->can('view_' . Str::singular($post_type->permission_slug) . '_categories')
-                    ->url(config('cms.should_translate')
-                        ? translate_route('admin.categories.index', Str::singular($post_type->slug) . '-categories')
-                        : route('admin.categories.index', Str::singular($post_type->slug) . '-categories')
-                    )
-                    ->active(optional(request()->route('category_type'))->slug == Str::singular($post_type->slug) . '-categories');
+//                    ->active(optional(request()->route('category_type'))->slug == Str::singular($post_type->slug) . '-categories')
+//                    ->url(config('cms.should_translate')
+//                        ? translate_route('admin.categories.index', Str::singular($post_type->slug) . '-categories')
+//                        : route('admin.categories.index', Str::singular($post_type->slug) . '-categories')
+//                    )
+                    ->url(translate_route('admin.categories.index', Str::singular($post_type->slug) . '-categories'))
+                ;
 
                 $menus[] =
                     MenuItem::make($name)

src/CmsServiceProvider.php

@@ -3,7 +3,7 @@
 namespace Javaabu\Cms;
 
 use Carbon\Carbon;
-use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Gate;
 use Illuminate\Support\Str;
 use Javaabu\Cms\Models\Post;
 use Javaabu\Cms\Models\PostType;
@@ -15,9 +15,9 @@ class CmsServiceProvider extends ServiceProvider
 {
     protected array $migrations = [
         'create_category_types_table',
-        'create_categories_table',
         'create_post_types_table',
         'create_posts_table',
+        'create_categories_table',
     ];
 
     /**
@@ -26,6 +26,8 @@ class CmsServiceProvider extends ServiceProvider
     public function boot()
     {
         $this->offerPublishing();
+
+        $this->registerPolicies();
     }
 
     /**
@@ -74,6 +76,15 @@ public function offerPublishing(): void
         }
     }
 
+    public function registerPolicies()
+    {
+        $policies = $this->getPolicies();
+
+        foreach ($policies as $key => $value) {
+            Gate::policy($key, $value);
+        }
+    }
+
     public function registerSingletons(): void
     {
         $this->app->singleton(Cms::class, function () {
@@ -171,4 +182,15 @@ protected function generateMigrationName(string $migrationFileName, Carbon $now)
 
         return database_path($migrationsPath . $timestamp . '_' . $migrationFileName);
     }
+
+    private function getPolicies(): array
+    {
+        $policies = [];
+
+        foreach (config('cms.policies') as $model_name => $policy) {
+            $policies[config("cms.models.{$model_name}")] = $policy;
+        }
+
+        return $policies;
+    }
 }

src/Http/Controllers/Admin/PostsController.php

@@ -89,8 +89,6 @@ public function index($locale, PostType $type, Request $request, bool $trashed =
             $posts->onlyTrashed();
         }
 
-        $posts->with('department');
-
 //        if ($request->download) {
 //            return (new PostsExport($posts))->download('posts.xlsx');
 //        }

src/Http/Requests/PostRequest.php

@@ -8,10 +8,10 @@
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Validation\Rules\Unique;
 use Javaabu\Cms\Enums\PageStyles;
+use Javaabu\Cms\Models\PostType;
 use Javaabu\Helpers\Enums\PublishStatuses;
 use Illuminate\Foundation\Http\FormRequest;
 use Javaabu\Helpers\Media\AllowedMimeTypes;
-use Javaabu\Translatable\Facades\Languages;
 
 class PostRequest extends FormRequest
 {
@@ -69,10 +69,6 @@ public function rules(): array
             'recently_updated'  => 'boolean',
         ];
 
-        if (config('cms.should_translate')) {
-            $rules['lang'] = 'in:' . implode(',', Languages::all()->pluck('code')->toArray());
-        }
-
         $rules['title'] = 'string|max:500';
         $rules['slug'] = ['string', 'max:255'];
 
@@ -131,12 +127,10 @@ public function rules(): array
             'exists:menus,id',
         ];
 
-        if ($model) {
-            //
-        } else {
+        if (! $model) {
             $rules['title'] .= '|required';
             $rules['slug'][] = 'required';
-            $rules['lang'] .= '|required';
+            if (config('cms.should_translate')) $rules['lang'] = 'required';
         }
 
         return $rules;

src/Models/TranslatablePost.php

@@ -0,0 +1,51 @@
+<?php
+
+namespace Javaabu\Cms\Policies;
+
+use Javaabu\Auth\User;
+use Javaabu\Cms\Models\Category;
+use Javaabu\Cms\Models\CategoryType;
+
+class CategoryPolicy
+{
+
+    /**
+     * Determine whether the user can see view any categories
+     */
+    public function viewAny(User $user, CategoryType $category_type)
+    {
+        return $user->can('viewAny', $category_type);
+    }
+
+    /**
+     * Determine whether the user can view the category.
+     */
+    public function view(User $user, Category $category)
+    {
+        return $user->can('view', $category->type);
+    }
+
+    /**
+     * Determine whether the user can create category.
+     */
+    public function create(User $user, CategoryType $category_type)
+    {
+        return $user->can('create', $category_type);
+    }
+
+    /**
+     * Determine whether the user can delete the category.
+     */
+    public function delete(User $user, Category $category)
+    {
+        return $user->can('delete', $category->type);
+    }
+
+    /**
+     * Determine whether the user can update the category.
+     */
+    public function update(User $user, Category $category)
+    {
+        return $user->can('update', $category->type);
+    }
+}

src/Policies/CategoryPolicy.php

@@ -0,0 +1,49 @@
+<?php
+
+namespace Javaabu\Cms\Policies;
+
+use Javaabu\Auth\User;
+use Javaabu\Cms\Models\CategoryType;
+
+class CategoryTypePolicy
+{
+    /**
+     * Determine whether the user can see view any category types
+     */
+    public function viewAny(User $user, CategoryType $category_type): bool
+    {
+        return $user->can('view_' . $category_type->permission_slug);
+    }
+
+    /**
+     * Determine whether the user can view the category type.
+     */
+    public function view(User $user, CategoryType $category_type): bool
+    {
+        return $user->can('view_' . $category_type->permission_slug);
+    }
+
+    /**
+     * Determine whether the user can create category type.
+     */
+    public function create(User $user, CategoryType $category_type): bool
+    {
+        return $user->can('edit_' . $category_type->permission_slug);
+    }
+
+    /**
+     * Determine whether the user can delete the category type.
+     */
+    public function delete(User $user, CategoryType $category_type): bool
+    {
+        return $user->can('delete_' . $category_type->permission_slug);
+    }
+
+    /**
+     * Determine whether the user can update the category type.
+     */
+    public function update(User $user, CategoryType $category_type): bool
+    {
+        return $user->can('edit_' . $category_type->permission_slug);
+    }
+}