Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/ledger.corals.io/Corals/modules/Ledger/Policies/ |
<?php
namespace Corals\Modules\Ledger\Policies;
use Corals\Foundation\Policies\BasePolicy;
use Corals\Modules\Ledger\Models\Record;
use Corals\User\Models\User;
class RecordPolicy extends BasePolicy
{
protected $administrationPermission = 'Administrations::admin.ledger';
protected $skippedAbilities = [];
/**
* @param User $user
* @return bool
*/
public function view(User $user)
{
if ($user->can('Ledger::record.view')) {
return true;
}
return false;
}
/**
* @param User $user
* @return bool
*/
public function create(User $user)
{
return $user->can('Ledger::record.create');
}
/**
* @param User $user
* @param Record $record
* @return bool
*/
public function update(User $user, Record $record)
{
if ($record->status == 'confirmed') {
return false;
}
if ($this->isAdministrator($user) || ($user->can('Ledger::record.update') && user()->id === $record->created_by)) {
return true;
}
return false;
}
/**
* @param User $user
* @param Record $record
* @return bool
*/
public function destroy(User $user, Record $record)
{
if ($record->status == 'confirmed') {
return false;
}
if ($this->isAdministrator($user) || $user->can('Ledger::record.delete')) {
return true;
}
return false;
}
}