/**
* Run the database seeds.
*
* @return void
*/
public function run()
{
DB::transaction(function () {
// create admin user
$root = factory(App\User::class)->create(['name' => 'Administrator', 'email' => '*****@*****.**', 'password' => bcrypt('123456'), 'username' => 'admin', 'location' => 'Da Nang', 'country' => 'Viet Nam', 'biography' => 'Dev', 'occupation' => 'Dev', 'website' => 'greenglobal.vn', 'image' => 'avatar.jpg']);
// create default roles
$admin = new Role();
$admin->name = 'admin';
$admin->display_name = 'Administrator';
$admin->description = 'User is allowed to manage all system.';
$admin->active = 1;
$admin->save();
// create default guest roles
$guest = new Role();
$guest->name = 'guest';
$guest->display_name = 'Guest';
$guest->description = 'User are not logged in.';
$guest->active = 1;
$guest->save();
// attach roles
$root->attachRole($admin);
// create root permission
$admin = new NodePermission();
$admin->name = 'Root';
$admin->display_name = 'Root permission';
$admin->description = 'The root.';
$admin->save();
// create all permission to admin
$root = new PermissionRole();
$root->permission_id = 1;
$root->role_id = 1;
$root->status = 1;
$root->save();
});
}
/**
* Browse items
*
* @param array $options
* @return array
*/
public static function browse($options = [])
{
$find = new Role();
$fillable = $find->fillable;
$total = $find->count();
if (!empty($options['order'])) {
foreach ($options['order'] as $field => $direction) {
if (in_array($field, $fillable)) {
$find = $find->orderBy($field, $direction);
}
$find = $find->orderBy('id', 'DESC');
}
}
if (!empty($options['offset'])) {
$find = $find->skip($options['offset']);
}
if (!empty($options['limit'])) {
$find = $find->take($options['limit']);
}
return ['total' => $total, 'offset' => empty($options['offset']) ? 0 : $options['offset'], 'limit' => empty($options['limit']) ? 0 : $options['limit'], 'data' => $find->get()];
}
public function testAllowGuestPermission()
{
// Post permission tree
NodePermission::model()->tree('[{"id":2, "name":"2"},{"id":3, "name":"3","children":[{"id":4, "name":"4","children":[{"id":5, "name":"5"},{"id":6, "name":"6"}]}]},{"id":7, "name":"7"}]');
// add routes to permission
PermissionRoute::setRoutePermissionsRoles(2, '/password', 'PATCH');
PermissionRoute::setRoutePermissionsRoles(2, '/blog/{id}', 'POST');
$guestRoleId = Role::where('name', 'guest')->lists('id');
// set a permisson
PermissionRole::create(['permission_id' => 2, 'role_id' => $guestRoleId[0], 'status' => 1]);
$res = $this->call('POST', '/blog/1');
$this->assertEquals(200, $res->getStatusCode());
}
public function assignRole($id, Request $request)
{
$user = AppUser::find($id);
if (!$user) {
return response()->json(null, 404);
}
$roleIdOrName = $request->roleIdOrName;
$field = is_numeric($roleIdOrName) ? 'id' : 'name';
$role = Role::where($field, $roleIdOrName)->first();
if (!$role) {
return response()->json(arrayView('gcl.gclusers::errors/validation', ['errors' => ['Role does not exist.']]), 400);
}
$hasRole = $user->hasRole($role->name);
if ($hasRole) {
return response()->json(null, 204);
}
$user->attachRole($role);
return response()->json(null, 204);
}
/**
* Check role is have all permission action
*
* @param Request
* @return Response
*/
public function checkAllPerm($id = null)
{
if (!Role::find($id)) {
return response()->json(null, 404);
}
$permissionRoot = PermissionRole::where(['role_id' => $id, 'permission_id' => 1])->first();
if (!empty($permissionRoot) && $permissionRoot->status == 1) {
$isAll = true;
} else {
$isAll = false;
}
$roles = ['id' => (int) $id, 'type' => 'permissions', 'isAll' => $isAll];
return response()->json(arrayView('gcl.gclusers::nodePermission/read', ['node' => $roles]), 200);
}
public function testBrowseWithOrderRightParams()
{
$this->withoutMiddleware();
$roles = [];
for ($i = 0; $i < 10; ++$i) {
$roles[] = factory(Role::class)->create(['name' => 'admin ' . $i, 'display_name' => 'Administrator ' . $i]);
}
$rolesID = Role::select('*')->orderBy('id', 'desc')->get();
// add ->where('name', '<>', 'guest') if not get guest
$rolesDisplayName = Role::select('*')->orderBy('display_name', 'asc')->get();
// add ->where('name', '<>', 'guest') if not get guest
$rolesName = Role::select('*')->orderBy('name', 'desc')->get();
// add ->where('name', '<>', 'guest') if not get guest
// check order roles with full input
$res = $this->call('GET', '/roles?sort=name&direction=desc');
$this->assertEquals(200, $res->getStatusCode());
$results = json_decode($res->getContent());
for ($i = 0; $i < count($rolesName); ++$i) {
$this->assertEquals($rolesName[$i]->id, $results->entities[$i]->id);
}
$res = $this->call('GET', '/roles?sort=display_name&direction=asc');
$this->assertEquals(200, $res->getStatusCode());
$results = json_decode($res->getContent());
for ($i = 0; $i < count($results->entities); ++$i) {
$this->assertEquals($rolesDisplayName[$i]->id, $results->entities[$i]->id);
}
// check order roles with equals value of order field, roles is sorted follow id field with desc
$roles = [];
for ($i = 0; $i < 10; ++$i) {
if (in_array($i, [2, 4, 6])) {
$roles[] = factory(Role::class)->create(['display_name' => 'Administrator']);
}
$roles[] = factory(Role::class)->create();
}
$roles1 = Role::where('display_name', '=', 'Administrator')->orderBy('id', 'desc')->get();
$roles2 = Role::where('display_name', '<>', 'Administrator')->orderBy('order', 'asc')->get();
$roles = array_merge((array) $roles1, (array) $roles2);
$res = $this->call('GET', '/roles?sort=display_name&direction=asc');
$this->assertEquals(200, $res->getStatusCode());
$results = json_decode($res->getContent());
for ($i = 1; $i < count($roles); ++$i) {
$this->assertEquals($roles[$i]->id, $results->entities[$i]->id);
}
}
/**
* index
* @param int $id
* @return json
*/
public function indexByUser(Request $request, $id)
{
$user = \App\User::find($id);
if (!$user) {
return response()->json(null, 404);
}
$roles = Role::browseByUser(['order' => [$request->input('sort', 'name') => $request->input('direction', 'asc')], 'limit' => $limit = (int) $request->input('limit', 25), 'offset' => ($request->input('page', 1) - 1) * $limit, 'user' => $user]);
return response()->json(arrayView('gcl.gclusers::role/browse', ['roles' => $roles]), 200);
}
/**
* Check guest roles have a permission
*
* @param $route
* @return boolean
*/
public static function isAllowGuest(array $route = [])
{
// Get param
$route_method = $route['route_method'];
$route_name = $route['route_name'];
// Get roles
$guestRole = Role::where('name', 'guest')->lists('id');
if (!$guestRole->count()) {
return false;
}
// Get permission
$permissions = parent::where(['route_method' => $route_method, 'route_name' => $route_name])->lists('permission_id')->toArray();
if (empty($permissions)) {
return false;
}
// Get permission status
$rolePerm = PermissionRole::whereIn('role_id', $guestRole)->whereIn('permission_id', $permissions)->get();
if (!$rolePerm->count()) {
return false;
}
foreach ($rolePerm as $perm) {
if ($perm->status == 1) {
return true;
}
}
return false;
}