checkPermission(self::READ_PERMISSION); //datatables if ($request->ajax()) { return $this->dataTableQuery(); } $html = $this->dataTable(); return view('admin.roles.index', compact('html')); } /** * Show the form for creating a new resource. * * @return Application|Factory|View */ public function create() { $this->checkPermission(self::CREATE_PERMISSION); $permissions = Permission::all(); return view('admin.roles.edit', compact('permissions')); } /** * Store a newly created resource in storage. * * @return RedirectResponse */ public function store(Request $request): RedirectResponse { $this->checkPermission(self::CREATE_PERMISSION); $role = Role::create([ 'name' => $request->name, 'color' => $request->color, 'power' => $request->power ]); if ($request->permissions) { $role->givePermissionTo($request->permissions); } return redirect() ->route('admin.roles.index') ->with('success', __('Role saved')); } /** * Display the specified resource. */ public function show() { abort(404); } /** * Show the form for editing the specified resource. * * @param Role $role * @return Application|Factory|View */ public function edit(Role $role) { $this->checkPermission(self::EDIT_PERMISSION); if(Auth::user()->roles[0]->power < $role->power){ return back()->with("error","You dont have enough Power to edit that Role"); } $permissions = Permission::all(); return view('admin.roles.edit', compact('role', 'permissions')); } /** * Update the specified resource in storage. * * @param Role $role * @return RedirectResponse */ public function update(Request $request, Role $role) { $this->checkPermission(self::EDIT_PERMISSION); if(Auth::user()->roles[0]->power < $role->power){ return back()->with("error","You dont have enough Power to edit that Role"); } if ($request->permissions) { if($role->id != 1){ //disable admin permissions change $role->syncPermissions($request->permissions); } } //if($role->id == 1 || $role->id == 3 || $role->id == 4){ //dont let the user change the names of these roles // $role->update([ // 'color' => $request->color // ]); //}else{ $role->update([ 'name' => $request->name, 'color' => $request->color ]); //} //if($role->id == 1){ // return redirect()->route('admin.roles.index')->with('success', __('Role updated. Name and Permissions of this Role cannot be changed')); //}elseif($role->id == 4 || $role->id == 3){ // return redirect()->route('admin.roles.index')->with('success', __('Role updated. Name of this Role cannot be changed')); // }else{ return redirect() ->route('admin.roles.index') ->with('success', __('Role saved')); //} } /** * Remove the specified resource from storage. * * @return RedirectResponse */ public function destroy(Role $role) { $this->checkPermission(self::DELETE_PERMISSION); if($role->id == 1 || $role->id == 3 || $role->id == 4){ //cannot delete the hard coded roles return back()->with("error","You cannot delete that role"); } $users = User::role($role)->get(); foreach($users as $user){ //$user->syncRoles(['Member']); $user->syncRoles(4); } $role->delete(); return redirect() ->route('admin.roles.index') ->with('success', __('Role removed')); } /** * @return mixed * @throws Exception */ public function dataTable() { $query = Role::query()->withCount(['users', 'permissions']); return datatables($query) ->editColumn('id', function (Role $role) { return $role->id; }) ->addColumn('actions', function (Role $role) { return '

' . csrf_field() . ' ' . method_field("DELETE") . '

'; }) ->editColumn('name', function (Role $role) { return "color\">$role->name"; }) ->editColumn('usercount', function ($query) { return $query->users_count; }) ->editColumn('permissionscount', function ($query){ return $query->permissions_count; }) ->editColumn('power', function (Role $role){ return $role->power; }) ->rawColumns(['actions', 'name']) ->make(true); } }