Super admin (#48)

SebKay · web-flow · commit cf29bb38e58e · 2023-12-06T10:11:51.000Z
* Update Role.php

* Update Permission.php

* Update RolesAndPermissionsSeeder.php

* Update .env.example

* Update .env.testing

* Update LoginController.php

* Update UsersSeeder.php

* Seed super admin and admin

* Update AuthServiceProvider.php

* Update User.php

* Update RolesAndPermissionsSeeder.php
diff --git a/.env.example b/.env.example
@@ -4,6 +4,7 @@ APP_KEY=base64:jpd/wy450S/8N0y6OfuRoZ8yS3AWEzrbkSgo08djF4w=
 APP_DEBUG=true
 APP_URL=http://laravel-inertia-template.test
 
+SEED_SUPER_ADMIN_EMAIL=super@laravel-inertia-template.test
 SEED_ADMIN_EMAIL=admin@laravel-inertia-template.test
 
 LOG_CHANNEL=stack
diff --git a/.env.testing b/.env.testing
@@ -6,6 +6,7 @@ APP_URL=http://laravel-inertia-template.test
 
 BCRYPT_ROUNDS=4
 
+SEED_SUPER_ADMIN_EMAIL=super@laravel-inertia-template.test
 SEED_ADMIN_EMAIL=admin@laravel-inertia-template.test
 
 LOG_CHANNEL=stack
diff --git a/app/Enums/Permission.php b/app/Enums/Permission.php
@@ -4,6 +4,8 @@
 
 enum Permission: string
 {
+    case ACCESS_ADMIN = 'access-filament';
+
     case EDIT_ORGANISATION = 'edit-organisation';
     case UPDATE_ORGANISATION = 'update-organisation';
 
diff --git a/app/Enums/Role.php b/app/Enums/Role.php
@@ -4,6 +4,7 @@
 
 enum Role: string
 {
+    case SUPER_ADMIN = 'super-admin';
     case ADMIN = 'admin';
     case USER = 'user';
 
diff --git a/app/Http/Controllers/LoginController.php b/app/Http/Controllers/LoginController.php
@@ -13,7 +13,7 @@ public function show(Request $request)
         $isProd = \app()->environment('production');
 
         return \inertia('Login/Show', [
-            'email' => ! $isProd ? \env('SEED_ADMIN_EMAIL') : '',
+            'email' => ! $isProd ? \env('SEED_SUPER_ADMIN_EMAIL') : '',
             'password' => ! $isProd ? '12345' : '',
             'remember' => ! $isProd ? true : false,
             'redirect' => $request->query('redirect', ''),
diff --git a/app/Models/User.php b/app/Models/User.php
@@ -79,7 +79,7 @@ public function updatePassword(?string $new_password = '')
 
     public function canAccessPanel(Panel $panel): bool
     {
-        return $this->hasRole(Role::ADMIN->value);
+        return $this->hasRole(Role::SUPER_ADMIN->value);
     }
 
     public function getFilamentName(): string
diff --git a/app/Providers/AuthServiceProvider.php b/app/Providers/AuthServiceProvider.php
@@ -4,6 +4,7 @@
 
 // use Illuminate\Support\Facades\Gate;
 
+use App\Enums\Role;
 use App\Models\User;
 use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
 use Illuminate\Support\Facades\Gate;
@@ -27,7 +28,7 @@ class AuthServiceProvider extends ServiceProvider
     public function boot()
     {
         Gate::define('viewPulse', function (User $user) {
-            return $user->hasRole('admin');
+            return $user->hasRole(Role::SUPER_ADMIN->value);
         });
     }
 }
diff --git a/database/seeders/OrganisationsSeeder.php b/database/seeders/OrganisationsSeeder.php
@@ -14,7 +14,7 @@ class OrganisationsSeeder extends Seeder
 
     public function run()
     {
-        User::whereHas('roles', fn ($q) => $q->where('name', Role::ADMIN->value))
+        User::whereHas('roles', fn ($q) => $q->where('name', [Role::SUPER_ADMIN->value, Role::ADMIN->value]))
             ->get()
             ->each(function (User $user) {
                 $user->currentOrganisation()
diff --git a/database/seeders/RolesAndPermissionsSeeder.php b/database/seeders/RolesAndPermissionsSeeder.php
@@ -16,6 +16,8 @@ class RolesAndPermissionsSeeder extends Seeder
 
     protected Collection $roles;
 
+    protected Collection $superAdminPermissions;
+
     protected Collection $orgnaisationPermissions;
 
     protected Collection $postPermissions;
@@ -30,13 +32,18 @@ public function run()
     protected function createRoles()
     {
         $this->roles = \collect([
+            Role::SUPER_ADMIN->value => SpatieRole::create(['name' => Role::SUPER_ADMIN]),
             Role::ADMIN->value => SpatieRole::create(['name' => Role::ADMIN]),
             Role::USER->value => SpatieRole::create(['name' => Role::USER]),
         ]);
     }
 
     protected function createPermissions()
     {
+        $this->superAdminPermissions = \collect([
+            SpatiePermission::create(['name' => Permission::ACCESS_ADMIN]),
+        ]);
+
         $this->orgnaisationPermissions = \collect([
             SpatiePermission::create(['name' => Permission::EDIT_ORGANISATION]),
             SpatiePermission::create(['name' => Permission::UPDATE_ORGANISATION]),
@@ -53,6 +60,8 @@ protected function createPermissions()
 
     protected function assignPermissionsToRoles()
     {
+        $this->roles->get(Role::SUPER_ADMIN->value)->givePermissionTo($this->superAdminPermissions);
+
         $this->roles->get(Role::ADMIN->value)->givePermissionTo($this->postPermissions);
         $this->roles->get(Role::ADMIN->value)->givePermissionTo($this->orgnaisationPermissions);
 
diff --git a/database/seeders/UsersSeeder.php b/database/seeders/UsersSeeder.php
@@ -13,6 +13,14 @@ class UsersSeeder extends Seeder
 
     public function run()
     {
+        User::factory()
+            ->afterCreating(function (User $user) {
+                $user->assignRole(Role::SUPER_ADMIN->value, Role::ADMIN->value);
+            })
+            ->create([
+                'email' => \env('SEED_SUPER_ADMIN_EMAIL'),
+            ]);
+
         User::factory()
             ->afterCreating(function (User $user) {
                 $user->assignRole(Role::ADMIN->value);

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,8 @@`
`4`	`4`
`5`	`5`	`enum Permission: string`
`6`	`6`	`{`
	`7`	`+ case ACCESS_ADMIN = 'access-filament';`
	`8`	`+`
`7`	`9`	`case EDIT_ORGANISATION = 'edit-organisation';`
`8`	`10`	`case UPDATE_ORGANISATION = 'update-organisation';`
`9`	`11`
Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`
`5`	`5`	`enum Role: string`
`6`	`6`	`{`
	`7`	`+ case SUPER_ADMIN = 'super-admin';`
`7`	`8`	`case ADMIN = 'admin';`
`8`	`9`	`case USER = 'user';`
`9`	`10`
Original file line number	Diff line number	Diff line change
`@@ -79,7 +79,7 @@ public function updatePassword(?string $new_password = '')`
`79`	`79`
`80`	`80`	`public function canAccessPanel(Panel $panel): bool`
`81`	`81`	`{`
`82`		`- return $this->hasRole(Role::ADMIN->value);`
	`82`	`+ return $this->hasRole(Role::SUPER_ADMIN->value);`
`83`	`83`	`}`
`84`	`84`
`85`	`85`	`public function getFilamentName(): string`
Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`
`5`	`5`	`// use Illuminate\Support\Facades\Gate;`
`6`	`6`
	`7`	`+use App\Enums\Role;`
`7`	`8`	`use App\Models\User;`
`8`	`9`	`use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;`
`9`	`10`	`use Illuminate\Support\Facades\Gate;`
`@@ -27,7 +28,7 @@ class AuthServiceProvider extends ServiceProvider`
`27`	`28`	`public function boot()`
`28`	`29`	`{`
`29`	`30`	`Gate::define('viewPulse', function (User $user) {`
`30`		`- return $user->hasRole('admin');`
	`31`	`+ return $user->hasRole(Role::SUPER_ADMIN->value);`
`31`	`32`	`});`
`32`	`33`	`}`
`33`	`34`	`}`
Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@ class OrganisationsSeeder extends Seeder`
`14`	`14`
`15`	`15`	`public function run()`
`16`	`16`	`{`
`17`		`- User::whereHas('roles', fn ($q) => $q->where('name', Role::ADMIN->value))`
	`17`	`+ User::whereHas('roles', fn ($q) => $q->where('name', [Role::SUPER_ADMIN->value, Role::ADMIN->value]))`
`18`	`18`	`->get()`
`19`	`19`	`->each(function (User $user) {`
`20`	`20`	`$user->currentOrganisation()`