47 lines
968 B
PHP
47 lines
968 B
PHP
<?php
|
|
|
|
namespace App\Policies;
|
|
|
|
use App\Models\Contrat;
|
|
use App\Models\User;
|
|
|
|
class ContratPolicy
|
|
{
|
|
public function viewAny(User $user): bool
|
|
{
|
|
return true;
|
|
}
|
|
|
|
public function view(User $user, Contrat $contrat): bool
|
|
{
|
|
if ($user->hasRole('admin')) {
|
|
return true;
|
|
}
|
|
|
|
return $user->service_id === $contrat->service_id;
|
|
}
|
|
|
|
public function create(User $user): bool
|
|
{
|
|
return true; // Anyone can create, but in the controller we'll restrict to their own service
|
|
}
|
|
|
|
public function update(User $user, Contrat $contrat): bool
|
|
{
|
|
if ($user->hasRole('admin')) {
|
|
return true;
|
|
}
|
|
|
|
return $user->service_id === $contrat->service_id;
|
|
}
|
|
|
|
public function delete(User $user, Contrat $contrat): bool
|
|
{
|
|
if ($user->hasRole('admin')) {
|
|
return true;
|
|
}
|
|
|
|
return $user->service_id === $contrat->service_id;
|
|
}
|
|
}
|