File: /home/xedaptot/ai.naniguide.com/app/Policies/WebsitePolicy.php
<?php
namespace App\Policies;
use Illuminate\Auth\Access\HandlesAuthorization;
use App\Model\User;
use App\Model\Website;
class WebsitePolicy
{
use HandlesAuthorization;
public function list(User $user)
{
if (app_profile('website.disable') === true) {
return false;
}
return true;
}
public function create(User $user)
{
// RBAC check
if ($user->hasPermission('account.read_only')) {
return false;
}
if (app_profile('website.disable') === true) {
return false;
}
return true;
}
public function read(User $user, Website $website)
{
if (app_profile('website.disable') === true) {
return false;
}
return $user->customer->id == $website->customer_id;
}
public function update(User $user, Website $website)
{
// RBAC check
if ($user->hasPermission('account.read_only')) {
return false;
}
if (app_profile('website.disable') === true) {
return false;
}
return $user->customer->id == $website->customer_id;
}
public function delete(User $user, Website $website)
{
// RBAC check
if ($user->hasPermission('account.read_only')) {
return false;
}
if (app_profile('website.disable') === true) {
return false;
}
return $user->customer->id == $website->customer_id;
}
public function connect(User $user, Website $website)
{
// RBAC check
if ($user->hasPermission('account.read_only')) {
return false;
}
if (app_profile('website.disable') === true) {
return false;
}
return $user->customer->id == $website->customer_id && $website->status == Website::STATUS_INACTIVE;
}
public function disconnect(User $user, Website $website)
{
// RBAC check
if ($user->hasPermission('account.read_only')) {
return false;
}
if (app_profile('website.disable') === true) {
return false;
}
return $user->customer->id == $website->customer_id && $website->status == Website::STATUS_CONNECTED;
}
}