mirror of
https://github.com/HolgerHatGarKeineNode/einundzwanzig-app.git
synced 2026-06-11 02:50:29 +00:00
✨ **Add authenticated API endpoints for managing Meetups, Cities, Venues, and Lecturers**
- ➕ Introduced `store`, `update`, `mine`, and `mineShow` endpoints for `Meetups`, `Cities`, `Venues`, and `Lecturers` with validation and authorization. - 🔒 Added `Policies` for `Meetups`, `Cities`, `Venues`, and `Lecturers` leveraging `ChecksCreatorOwnership` for ownership checks. - 🌐 Created `Resources` for structured API responses: `MeetupResource`, `CityResource`, `VenueResource`, and `LecturerResource`. - ✅ Added dedicated `Request` classes for input validation: `Store` and `Update` variants for all models. - 🛠️ Updated controllers to support new functionalities with localized error messages and proper HTTP responses.
This commit is contained in:
HolgerHatGarKeineNode
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\City;
|
||||
use App\Models\User;
|
||||
use App\Policies\Concerns\ChecksCreatorOwnership;
|
||||
|
||||
class CityPolicy
|
||||
{
|
||||
use ChecksCreatorOwnership;
|
||||
|
||||
public function viewAny(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function view(User $user, City $city): bool
|
||||
{
|
||||
return $this->owns($user, $city);
|
||||
}
|
||||
|
||||
public function create(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function update(User $user, City $city): bool
|
||||
{
|
||||
return $this->owns($user, $city);
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,17 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies\Concerns;
|
||||
|
||||
use App\Models\User;
|
||||
use Illuminate\Database\Eloquent\Model;
|
||||
|
||||
trait ChecksCreatorOwnership
|
||||
{
|
||||
/**
|
||||
* Nur der urspruengliche Ersteller (created_by) oder ein Super-Admin darf das Model veraendern.
|
||||
*/
|
||||
protected function owns(User $user, Model $model): bool
|
||||
{
|
||||
return (int) $model->created_by === $user->id || $user->hasRole('super-admin');
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Lecturer;
|
||||
use App\Models\User;
|
||||
use App\Policies\Concerns\ChecksCreatorOwnership;
|
||||
|
||||
class LecturerPolicy
|
||||
{
|
||||
use ChecksCreatorOwnership;
|
||||
|
||||
public function viewAny(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function view(User $user, Lecturer $lecturer): bool
|
||||
{
|
||||
return $this->owns($user, $lecturer);
|
||||
}
|
||||
|
||||
public function create(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function update(User $user, Lecturer $lecturer): bool
|
||||
{
|
||||
return $this->owns($user, $lecturer);
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\MeetupEvent;
|
||||
use App\Models\User;
|
||||
use App\Policies\Concerns\ChecksCreatorOwnership;
|
||||
|
||||
class MeetupEventPolicy
|
||||
{
|
||||
use ChecksCreatorOwnership;
|
||||
|
||||
public function viewAny(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function view(User $user, MeetupEvent $meetupEvent): bool
|
||||
{
|
||||
return $this->owns($user, $meetupEvent);
|
||||
}
|
||||
|
||||
public function create(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function update(User $user, MeetupEvent $meetupEvent): bool
|
||||
{
|
||||
return $this->owns($user, $meetupEvent);
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\Meetup;
|
||||
use App\Models\User;
|
||||
use App\Policies\Concerns\ChecksCreatorOwnership;
|
||||
|
||||
class MeetupPolicy
|
||||
{
|
||||
use ChecksCreatorOwnership;
|
||||
|
||||
public function viewAny(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function view(User $user, Meetup $meetup): bool
|
||||
{
|
||||
return $this->owns($user, $meetup);
|
||||
}
|
||||
|
||||
public function create(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function update(User $user, Meetup $meetup): bool
|
||||
{
|
||||
return $this->owns($user, $meetup);
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,32 @@
|
||||
<?php
|
||||
|
||||
namespace App\Policies;
|
||||
|
||||
use App\Models\User;
|
||||
use App\Models\Venue;
|
||||
use App\Policies\Concerns\ChecksCreatorOwnership;
|
||||
|
||||
class VenuePolicy
|
||||
{
|
||||
use ChecksCreatorOwnership;
|
||||
|
||||
public function viewAny(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function view(User $user, Venue $venue): bool
|
||||
{
|
||||
return $this->owns($user, $venue);
|
||||
}
|
||||
|
||||
public function create(User $user): bool
|
||||
{
|
||||
return true;
|
||||
}
|
||||
|
||||
public function update(User $user, Venue $venue): bool
|
||||
{
|
||||
return $this->owns($user, $venue);
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user