public function deleteRegistration(Request $req, $eventId, $id) { $event = Event::find($id); if (is_null($event)) { return response()->json(["message" => "no_such_event"], 404); } $registration = UserEvent::with('user')->find($id); if (is_null($registration)) { return response()->json(["message" => "registration_deleted"]); } if (!Entrust::can(PermissionNames::ConferenceRegistrationApproval($event->conferenceID)) && $registration->user->accountID != Auth::user()->id) { return response()->json(["message" => "cannot_edit_registration"], 403); } $registration->delete(); return response()->json(["message" => "registration_deleted"]); }
private function isUserRegistrationApprover($conferenceID) { return Entrust::can(PermissionNames::ConferenceRegistrationApproval($conferenceID)); }