mirror of
https://github.com/Kovah/LinkAce.git
synced 2025-03-12 10:49:38 +01:00
b2705deeb5
This is a ton of work. A new system user is generated while running the migrations. System tokes are bound to that user. Api calls need to be properly authorized, which feels really hacky at the moment. I only implemented link api tests for now.
49 lines
1.0 KiB
PHP
49 lines
1.0 KiB
PHP
<?php
|
|
|
|
namespace App\Policies;
|
|
|
|
use App\Enums\Role;
|
|
use App\Models\User;
|
|
use Illuminate\Auth\Access\HandlesAuthorization;
|
|
use Laravel\Sanctum\PersonalAccessToken;
|
|
|
|
class ApiTokenPolicy
|
|
{
|
|
use HandlesAuthorization;
|
|
|
|
public function viewAny(User $user): bool
|
|
{
|
|
return true;
|
|
}
|
|
|
|
public function view(User $user, PersonalAccessToken $personalAccessToken): bool
|
|
{
|
|
return true;
|
|
}
|
|
|
|
public function create(User $user): bool
|
|
{
|
|
return true;
|
|
}
|
|
|
|
public function update(User $user, PersonalAccessToken $personalAccessToken): bool
|
|
{
|
|
return false;
|
|
}
|
|
|
|
public function delete(User $user, PersonalAccessToken $personalAccessToken): bool
|
|
{
|
|
return $personalAccessToken->tokenable->is($user) || $user->hasRole(Role::ADMIN);
|
|
}
|
|
|
|
public function restore(User $user, PersonalAccessToken $personalAccessToken): bool
|
|
{
|
|
return false;
|
|
}
|
|
|
|
public function forceDelete(User $user, PersonalAccessToken $personalAccessToken): bool
|
|
{
|
|
return false;
|
|
}
|
|
}
|