Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/medad.corals.io/Corals/modules/Medad/Policies/ |
<?php
namespace Corals\Modules\Medad\Policies;
use Corals\Modules\Medad\Constants\CompanyTypeConstants;
use Corals\Modules\Medad\Facades\Medad;
use Corals\Modules\Medad\Models\Invoice;
use Corals\Modules\Medad\Traits\MedadItemsAccessTrait;
use Corals\User\Models\User;
class InvoicePolicy extends MedadPolicy
{
use MedadItemsAccessTrait;
protected $administrationPermission = 'Administrations::admin.medad';
/**
* @param User $user
* @param Invoice|null $invoice
* @return bool
*/
public function view(User $user, Invoice $invoice = null)
{
if ($user->can('Medad::invoice.view') && $this->canAccess($invoice, false)) {
return true;
}
return false;
}
/**
* @param User $user
* @return bool
*/
public function create(User $user)
{
return ($user->can('Medad::invoice.create'));
}
/**
* @param User $user
* @param Invoice $invoice
* @return bool
*/
public function update(User $user, Invoice $invoice)
{
if (($user->can('Medad::invoice.update') && $this->canAccess($invoice) &&
$invoice->status == 'draft') && (
$this->isAdministrator($user)
|| $invoice->owner_id == $user->id
)) {
return true;
}
return false;
}
/**
* @param User $user
* @param Invoice $invoice
* @return bool
*/
public function destroy(User $user, Invoice $invoice)
{
if ($user->can('Medad::invoice.delete')
&& $this->canAccess($invoice)
&& $invoice->status == 'draft') {
return true;
}
return false;
}
public function canCreateTransactions(User $user, Invoice $invoice)
{
return $user->can('Medad::transaction.create')
&& $invoice->status == 'sent';
}
/**
* @param User $user
* @param Invoice $invoice
* @return bool
*/
public function markAsReceived(User $user, Invoice $invoice)
{
$userCompany = Medad::getUserCompany();
if (!$userCompany) {
return false;
}
return $userCompany->id == $invoice->customer_company_id && $invoice->status == 'sent'
&& $user->can('Medad::invoice.mark_as_received')
&& Medad::getCurrentCompanyType() == CompanyTypeConstants::CUSTOMER;
}
}