public function safeUp()
{
Route::refreshRoutes();
Role::create('Admin');
// ================= User management permissions =================
$group = new AuthItemGroup();
$group->name = 'User management';
$group->code = 'userManagement';
$group->save(false);
Role::assignRoutesViaPermission('Admin', 'viewUsers', ['/user-management/user/index', '/user-management/user/view', '/user-management/user/grid-page-size'], 'View users', $group->code);
Role::assignRoutesViaPermission('Admin', 'createUsers', ['/user-management/user/create'], 'Create users', $group->code);
Role::assignRoutesViaPermission('Admin', 'editUsers', ['/user-management/user/update', '/user-management/user/bulk-activate', '/user-management/user/bulk-deactivate'], 'Edit users', $group->code);
Role::assignRoutesViaPermission('Admin', 'deleteUsers', ['/user-management/user/delete', '/user-management/user/bulk-delete'], 'Delete users', $group->code);
Role::assignRoutesViaPermission('Admin', 'changeUserPassword', ['/user-management/user/change-password'], 'Change user password', $group->code);
Role::assignRoutesViaPermission('Admin', 'assignRolesToUsers', ['/user-management/user-permission/set', '/user-management/user-permission/set-roles'], 'Assign roles to users', $group->code);
Permission::assignRoutes('viewVisitLog', ['/user-management/user-visit-log/index', '/user-management/user-visit-log/grid-page-size', '/user-management/user-visit-log/view'], 'View visit log', $group->code);
Permission::create('viewUserRoles', 'View user roles', $group->code);
Permission::create('viewRegistrationIp', 'View registration IP', $group->code);
Permission::create('viewUserEmail', 'View user email', $group->code);
Permission::create('editUserEmail', 'Edit user email', $group->code);
Permission::create('bindUserToIp', 'Bind user to IP', $group->code);
Permission::addChildren('assignRolesToUsers', ['viewUsers', 'viewUserRoles']);
Permission::addChildren('changeUserPassword', ['viewUsers']);
Permission::addChildren('deleteUsers', ['viewUsers']);
Permission::addChildren('createUsers', ['viewUsers']);
Permission::addChildren('editUsers', ['viewUsers']);
Permission::addChildren('editUserEmail', ['viewUserEmail']);
// ================= User common permissions =================
$group = new AuthItemGroup();
$group->name = 'User common permission';
$group->code = 'userCommonPermissions';
$group->save(false);
Role::assignRoutesViaPermission('Admin', 'changeOwnPassword', ['/user-management/auth/change-own-password'], 'Change own password', $group->code);
}
public function safeUp()
{
Route::refreshRoutes();
(new AuthItemGroup(['name' => 'Settings', 'code' => 'settings']))->save();
Role::assignRoutesViaPermission('Admin', 'fullAccessToSettings', ['settings/manage/*'], null, 'settings');
Role::assignRoutesViaPermission('SeoManager', 'accessToSeoSettings', ['settings/manage/seo'], 'Access to SEO settings', 'settings');
AuthHelper::invalidatePermissions();
}
/**
* Add new routes and remove unused (for example if module or controller was deleted)
*
* @param string $id
* @param null $deleteUnused
*
* @return \yii\web\Response
*/
public function actionRefreshRoutes($id, $deleteUnused = null)
{
Route::refreshRoutes($deleteUnused !== null);
return $this->redirect(['view', 'id' => $id]);
}
/**
* Add new routes and remove unused (for example if module or controller was deleted)
*
* @param string $id
*
* @return \yii\web\Response
*/
public function actionRefreshRoutes($id)
{
Route::refreshRoutes();
return $this->redirect(['view', 'id' => $id]);
}
