admin/laravel-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e307885faf982a5c09c9fc3f339ba5db6e8fd608
laravel-backend/app/Http/Controllers/UserController.php
Joris Slagter df155bb13d
Some checks failed
continuous-integration/drone/push Build is failing
Details
Initial Laravel API import 
- Complete GGZ Ecademy Laravel backend application
- RESTful API for learning products, members, filters
- Authentication and authorization system
- Database migrations and seeders
- Custom CRUD generator commands
- Email notification system
- Integration with frontend applications
2025-12-02 17:40:21 +01:00

95 lines
2.9 KiB
PHP
Raw Blame History

<?php
namespace App\Http\Controllers;
use Illuminate\Support\Arr;
use App\Services\UserService;
use App\Http\Resources\UsersList;
use App\Http\Resources\UserResource;
use App\Http\Requests\User\UserStore;
use App\Http\Resources\UserLoggedResource;
class UserController extends Controller
{
private $userService;
public function __construct(UserService $userService)
{
$this->userService = $userService;
$this->middleware('auth:sanctum');
}
public function index()
{
$users = $this->userService->getWith(['roles']);
return response()->json(UserResource::collection($users), 200);
}
public function show($id)
{
$isAdmin = auth()->user()->hasRole('admin');
$isTheUserOwner = auth()->user()->id === (int) $id;
if (!$isAdmin && !$isTheUserOwner) {
return response()->json(['message' => 'You have no rights to do this'], 401);
}
$user = $this->userService->getOneWith($id, ['roles']);
if ($user) {
return response()->json(new UserResource($user));
} else return response()->json(['message' => 'User not found.'], 404);
}
public function store(UserStore $request)
{
$isSuperAdmin = auth()->user()->hasRole('super_admin');
$isEditingHimself = auth()->user()->id === (int) $request['id'];
if (!$isSuperAdmin && !$isEditingHimself) {
return response()->json(['message' => 'You have no rights to do this'], 401);
}
$hasImage = isset($request['image']) && $request->hasFile('image');
$request_data = $hasImage ? Arr::except($request->validated(), ['image']) : $request->validated();
// only super admin can manage users and rules
$user = $this->userService->save($request_data, $isSuperAdmin);
if ($hasImage) {
$user->addMedia($request['image'])->toMediaCollection('profile_pics');
}
if ($user) {
return response()->json($isEditingHimself ? new UserLoggedResource($user) : new UserResource($user));
} else return response()->json(['message' => 'User not found.'], 404);
}
public function destroy(String $id)
{
if (!auth()->user()->hasRole('admin')) {
return response()->json(['message' => 'You have no rights to do this'], 401);
}
$this->userService->delete($id);
return response()->json(null, 204);
}
public function getList()
{
$isSuperAdmin = auth()->user()->hasRole('super_admin');
$isAdmin = auth()->user()->hasRole('admin');
$isOperator = auth()->user()->hasRole('operator');
if (!$isSuperAdmin && !$isAdmin && !$isOperator) {
return response()->json(['message' => 'You have no rights to do this'], 401);
}
$users = $this->userService->getAll();
return response()->json(UsersList::collection($users), 200);
}
}
Reference in New Issue View Git Blame Copy Permalink