role basics

app/Console/Commands/Test.php

@@ -13,7 +13,6 @@ use App\Models\ExamUser;
 use App\Models\HitAndRun;
 use App\Models\Medal;
 use App\Models\Peer;
-use App\Models\Role;
 use App\Models\SearchBox;
 use App\Models\Snatch;
 use App\Models\Tag;
@@ -39,14 +38,14 @@ use Illuminate\Support\Facades\Hash;
 use Illuminate\Support\Facades\Redis;
 use Illuminate\Support\Facades\Storage;
 use Illuminate\Support\Str;
-use JeroenG\Explorer\Domain\Syntax\Matching;
-use JeroenG\Explorer\Infrastructure\Scout\ElasticEngine;
 use League\Flysystem\StorageAttributes;
 use Nexus\Database\NexusDB;
 use Nexus\Imdb\Imdb;
 use NexusPlugin\Menu\Filament\MenuItemResource\Pages\ManageMenuItems;
 use NexusPlugin\Menu\MenuRepository;
 use NexusPlugin\Menu\Models\MenuItem;
+use NexusPlugin\Permission\Models\Permission;
+use NexusPlugin\Permission\Models\Role;
 use NexusPlugin\PostLike\PostLikeRepository;
 use NexusPlugin\StickyPromotion\Models\StickyPromotion;
 use NexusPlugin\StickyPromotion\Models\StickyPromotionParticipator;
@@ -87,7 +86,9 @@ class Test extends Command
      */
     public function handle()
     {
-        Role::initClassRoles();
+        $user = User::query()->find(10003);
+        $permissions = $user->rolePermissions;
+        dd($permissions);
     }
 
 

app/Filament/Resources/Permission/PermissionResource.php

@@ -1,68 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission;
-
-use App\Filament\Resources\Permission\PermissionResource\Pages;
-use App\Filament\Resources\Permission\PermissionResource\RelationManagers;
-use App\Models\Permission;
-use Filament\Forms;
-use Filament\Resources\Form;
-use Filament\Resources\Resource;
-use Filament\Resources\Table;
-use Filament\Tables;
-use Illuminate\Database\Eloquent\Builder;
-use Illuminate\Database\Eloquent\SoftDeletingScope;
-
-class PermissionResource extends Resource
-{
-    protected static ?string $model = Permission::class;
-
-    protected static ?string $navigationIcon = 'heroicon-o-lock-open';
-
-    protected static ?string $navigationGroup = 'Permission';
-
-    protected static ?int $navigationSort = 2;
-
-    protected static function getNavigationLabel(): string
-    {
-        return __('admin.sidebar.permissions');
-    }
-
-    public static function getBreadcrumb(): string
-    {
-        return self::getNavigationLabel();
-    }
-
-    public static function form(Form $form): Form
-    {
-        return $form
-            ->schema([
-                //
-            ]);
-    }
-
-    public static function table(Table $table): Table
-    {
-        return $table
-            ->columns([
-                //
-            ])
-            ->filters([
-                //
-            ])
-            ->actions([
-                Tables\Actions\EditAction::make(),
-                Tables\Actions\DeleteAction::make(),
-            ])
-            ->bulkActions([
-                Tables\Actions\DeleteBulkAction::make(),
-            ]);
-    }
-
-    public static function getPages(): array
-    {
-        return [
-            'index' => Pages\ManagePermissions::route('/'),
-        ];
-    }
-}

app/Filament/Resources/Permission/PermissionResource/Pages/ManagePermissions.php

@@ -1,21 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission\PermissionResource\Pages;
-
-use App\Filament\Resources\Permission\PermissionResource;
-use Filament\Pages\Actions;
-use Filament\Resources\Pages\ManageRecords;
-
-class ManagePermissions extends ManageRecords
-{
-    protected static string $resource = PermissionResource::class;
-
-    protected ?string $maxContentWidth = 'full';
-
-    protected function getActions(): array
-    {
-        return [
-            Actions\CreateAction::make(),
-        ];
-    }
-}

app/Filament/Resources/Permission/RoleResource.php

@@ -1,79 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission;
-
-use App\Filament\Resources\Permission\RoleResource\Pages;
-use App\Filament\Resources\Permission\RoleResource\RelationManagers;
-use App\Models\Role;
-use Filament\Forms;
-use Filament\Resources\Form;
-use Filament\Resources\Resource;
-use Filament\Resources\Table;
-use Filament\Tables;
-use Illuminate\Database\Eloquent\Builder;
-use Illuminate\Database\Eloquent\SoftDeletingScope;
-
-class RoleResource extends Resource
-{
-    protected static ?string $model = Role::class;
-
-    protected static ?string $navigationIcon = 'heroicon-o-user-group';
-
-    protected static ?string $navigationGroup = 'Permission';
-
-    protected static ?int $navigationSort = 1;
-
-    protected static function getNavigationLabel(): string
-    {
-        return __('admin.sidebar.roles');
-    }
-
-    public static function getBreadcrumb(): string
-    {
-        return self::getNavigationLabel();
-    }
-
-    public static function form(Form $form): Form
-    {
-        return $form
-            ->schema([
-                //
-            ]);
-    }
-
-    public static function table(Table $table): Table
-    {
-        return $table
-            ->columns([
-                Tables\Columns\TextColumn::make('id'),
-                Tables\Columns\TextColumn::make('name')->label(__('label.name')),
-                Tables\Columns\TextColumn::make('classText')->label(__('label.role.class')),
-                Tables\Columns\TextColumn::make('updated_at')->label(__('label.updated_at')),
-            ])
-            ->filters([
-                //
-            ])
-            ->actions([
-                Tables\Actions\EditAction::make(),
-            ])
-            ->bulkActions([
-                Tables\Actions\DeleteBulkAction::make(),
-            ]);
-    }
-
-    public static function getRelations(): array
-    {
-        return [
-            //
-        ];
-    }
-
-    public static function getPages(): array
-    {
-        return [
-            'index' => Pages\ListRoles::route('/'),
-            'create' => Pages\CreateRole::route('/create'),
-            'edit' => Pages\EditRole::route('/{record}/edit'),
-        ];
-    }
-}

app/Filament/Resources/Permission/RoleResource/Pages/CreateRole.php

@@ -1,12 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission\RoleResource\Pages;
-
-use App\Filament\Resources\Permission\RoleResource;
-use Filament\Pages\Actions;
-use Filament\Resources\Pages\CreateRecord;
-
-class CreateRole extends CreateRecord
-{
-    protected static string $resource = RoleResource::class;
-}

app/Filament/Resources/Permission/RoleResource/Pages/EditRole.php

@@ -1,19 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission\RoleResource\Pages;
-
-use App\Filament\Resources\Permission\RoleResource;
-use Filament\Pages\Actions;
-use Filament\Resources\Pages\EditRecord;
-
-class EditRole extends EditRecord
-{
-    protected static string $resource = RoleResource::class;
-
-    protected function getActions(): array
-    {
-        return [
-            Actions\DeleteAction::make(),
-        ];
-    }
-}

app/Filament/Resources/Permission/RoleResource/Pages/ListRoles.php

@@ -1,20 +0,0 @@
-<?php
-
-namespace App\Filament\Resources\Permission\RoleResource\Pages;
-
-use App\Filament\PageList;
-use App\Filament\Resources\Permission\RoleResource;
-use Filament\Pages\Actions;
-use Filament\Resources\Pages\ListRecords;
-
-class ListRoles extends PageList
-{
-    protected static string $resource = RoleResource::class;
-
-    protected function getActions(): array
-    {
-        return [
-            Actions\CreateAction::make(),
-        ];
-    }
-}

app/Filament/Resources/User/UserResource/Pages/UserProfile.php

@@ -75,7 +75,7 @@ class UserProfile extends Page
             $actions[] = $this->buildEnableDisableAction();
             $actions[] = $this->buildEnableDisableDownloadPrivilegesAction();
         }
-        return $actions;
+        return apply_filter('user_profile_actions', $actions);
     }
 
     private function buildEnableDisableAction(): Actions\Action

app/Models/Permission.php

@@ -1,11 +0,0 @@
-<?php
-
-namespace App\Models;
-
-class Permission extends NexusModel
-{
-    public $timestamps = true;
-
-    protected $fillable = ['name', ];
-
-}

app/Models/Role.php

@@ -1,37 +0,0 @@
-<?php
-
-namespace App\Models;
-
-class Role extends NexusModel
-{
-    public $timestamps = true;
-
-    protected $fillable = ['name', 'class'];
-
-    public function permissions(): \Illuminate\Database\Eloquent\Relations\HasMany
-    {
-        return $this->hasMany(Permission::class, 'role_id');
-    }
-
-    public function getClassTextAttribute()
-    {
-        if ($this->class < 0) {
-            return '';
-        }
-        return User::getClassText($this->class);
-    }
-
-    public static function initClassRoles()
-    {
-        foreach (User::$classes as $class => $info) {
-            $attributes = [
-                'class' => $class
-            ];
-            $values = [
-                'name' => $info['text'],
-            ];
-            Role::query()->firstOrCreate($attributes, $values);
-        }
-    }
-
-}

app/Models/RolePermission.php

@@ -1,11 +0,0 @@
-<?php
-
-namespace App\Models;
-
-class RolePermission extends NexusModel
-{
-    public $timestamps = true;
-
-    protected $fillable = ['role_id', 'permission_id'];
-
-}

app/Models/Setting.php

@@ -11,6 +11,10 @@ class Setting extends NexusModel
 
     public $timestamps = true;
 
+    public static array $permissionDegeneration = [
+        'torrent-approval' => 'torrentmanage',
+    ];
+
     /**
      * get setting autoload = yes with cache
      *

app/Models/User.php

@@ -17,6 +17,8 @@ use Laravel\Sanctum\HasApiTokens;
 use Nexus\Database\NexusDB;
 use Filament\Models\Contracts\FilamentUser;
 use Filament\Models\Contracts\HasName;
+use NexusPlugin\Permission\Models\Permission;
+use NexusPlugin\Permission\Models\Role;
 
 class User extends Authenticatable implements FilamentUser, HasName
 {
@@ -98,7 +100,7 @@ class User extends Authenticatable implements FilamentUser, HasName
 
     public static function getClassText($class)
     {
-        if (!isset(self::$classes[$class])) {
+        if (!is_numeric($class)|| !isset(self::$classes[$class])) {
             return '';
         }
         if ($class >= self::CLASS_VIP) {
@@ -113,6 +115,15 @@ class User extends Authenticatable implements FilamentUser, HasName
         return $classText;
     }
 
+    public static function listClass(): array
+    {
+        $result = [];
+        foreach (self::$classes as $class => $info) {
+            $result[$class] = self::getClassText($class);
+        }
+        return $result;
+    }
+
     public function canAccessFilament(): bool
     {
         return $this->canAccessAdmin();
@@ -463,7 +474,7 @@ class User extends Authenticatable implements FilamentUser, HasName
         return $this->belongsToMany(Role::class, 'user_roles', 'uid', 'role_id')->withTimestamps();
     }
 
-    public function permissions()
+    public function directPermissions()
     {
         return $this->belongsToMany(Permission::class, 'user_permissions', 'uid', 'permission_id')->withTimestamps();
     }

app/Models/UserPermission.php

@@ -1,11 +0,0 @@
-<?php
-
-namespace App\Models;
-
-class UserPermission extends NexusModel
-{
-    public $timestamps = true;
-
-    protected $fillable = ['uid', 'permission_id'];
-
-}

app/Models/UserRole.php

@@ -1,11 +0,0 @@
-<?php
-
-namespace App\Models;
-
-class UserRole extends NexusModel
-{
-    public $timestamps = true;
-
-    protected $fillable = ['uid', 'role_id'];
-
-}

app/Repositories/UserRepository.php

@@ -149,13 +149,14 @@ class UserRepository extends BaseRepository
         return true;
     }
 
+    /**
+     * @deprecated  use User::listClass() instead !
+     *
+     * @return array
+     */
     public function listClass()
     {
-        $out = [];
-        foreach(User::$classes as $key => $value) {
-            $out[(string)$key] = $value['text'];
-        }
-        return $out;
+        return User::listClass();
     }
 
     public function disableUser(User $operator, $uid, $reason)