freescout/freescout-dist/app/Policies/ConversationPolicy.php

119 lines
3.3 KiB
PHP
Raw Normal View History

2023-12-22 19:40:32 +00:00
<?php
namespace App\Policies;
use App\Conversation;
use App\Mailbox;
use App\User;
use Illuminate\Auth\Access\HandlesAuthorization;
class ConversationPolicy
{
use HandlesAuthorization;
/**
* Determine whether the user can view the conversation.
*
* @param \App\User $user
* @param \App\Conversation $conversation
*
* @return bool
*/
public function view(User $user, Conversation $conversation)
{
if ($user->isAdmin()) {
return true;
} else {
if ($conversation->mailbox->users->contains($user)) {
// Maybe user can see only assigned conversations.
if (!\Eventy::filter('conversation.is_user_assignee', $conversation->user_id == $user->id, $conversation, $user->id)
&& $user->hasManageMailboxPermission($conversation->mailbox_id, Mailbox::ACCESS_PERM_ASSIGNED)
) {
return false;
} else {
return true;
}
} else {
return false;
}
}
}
/**
* Cached version.
*
* @param User $user [description]
* @param Conversation $conversation [description]
* @return [type] [description]
*/
public function viewCached(User $user, Conversation $conversation)
{
if ($user->isAdmin()) {
return true;
} else {
if ($conversation->mailbox->users_cached->contains($user)) {
// Maybe user can see only assigned conversations.
if (!\Eventy::filter('conversation.is_user_assignee', $conversation->user_id == $user->id, $conversation, $user->id)
&& $user->hasManageMailboxPermission($conversation->mailbox_id, Mailbox::ACCESS_PERM_ASSIGNED)
) {
return false;
} else {
return true;
}
} else {
return false;
}
}
}
/**
* Determine whether the user can update the conversation.
*
* @param \App\User $user
* @param \App\Conversation $conversation
*
* @return bool
*/
public function update(User $user, Conversation $conversation)
{
if ($user->isAdmin()) {
return true;
} else {
if ($conversation->mailbox->users->contains($user)) {
return true;
} else {
return false;
}
}
}
/**
* Check if user can delete conversation.
*/
public function delete(User $user, Conversation $conversation)
{
if ($user->isAdmin()) {
return true;
} else {
return $user->hasPermission(User::PERM_DELETE_CONVERSATIONS);
}
}
/**
* Determine whether current user can move conversations
*
* @param \App\User $user
* @param \App\Mailbox $mailbox
*
* @return mixed
*/
public function move(User $user)
{
// First check this, because it is cached in conversation page
if (count($user->mailboxesCanView(true)) > 1) {
return true;
}
return Mailbox::count() > 1;
}
}