BookStackApp
diff --git a/‎app/Activity/Controllers/WebhookController.php‎
Lines changed: 2 additions & 1 deletion b/‎app/Activity/Controllers/WebhookController.php‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎app/Activity/Tools/CommentTree.php‎
Lines changed: 1 addition & 1 deletion b/‎app/Activity/Tools/CommentTree.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/Activity/Tools/TagClassGenerator.php‎
Lines changed: 2 additions & 2 deletions b/‎app/Activity/Tools/TagClassGenerator.php‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎app/Entities/Controllers/PageController.php‎
Lines changed: 1 addition & 1 deletion b/‎app/Entities/Controllers/PageController.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/Entities/Repos/ChapterRepo.php‎
Lines changed: 1 addition & 1 deletion b/‎app/Entities/Repos/ChapterRepo.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/Entities/Repos/PageRepo.php‎
Lines changed: 4 additions & 4 deletions b/‎app/Entities/Repos/PageRepo.php‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎app/Entities/Tools/Cloner.php‎
Lines changed: 4 additions & 4 deletions b/‎app/Entities/Tools/Cloner.php‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎app/Entities/Tools/PageEditorData.php‎
Lines changed: 1 addition & 1 deletion b/‎app/Entities/Tools/PageEditorData.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/Entities/Tools/PermissionsUpdater.php‎
Lines changed: 1 addition & 1 deletion b/‎app/Entities/Tools/PermissionsUpdater.php‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎app/Exports/Controllers/BookExportApiController.php‎
Lines changed: 2 additions & 1 deletion b/‎app/Exports/Controllers/BookExportApiController.php‎
Lines changed: 2 additions & 1 deletion
@@ -6,6 +6,7 @@
 use BookStack\Activity\Models\Webhook;
 use BookStack\Activity\Queries\WebhooksAllPaginatedAndSorted;
 use BookStack\Http\Controller;
+use BookStack\Permissions\Permission;
 use BookStack\Util\SimpleListOptions;
 use Illuminate\Http\Request;
 
@@ -14,7 +15,7 @@ class WebhookController extends Controller
     public function __construct()
     {
         $this->middleware([
-            'can:settings-manage',
+            Permission::SettingsManage->middleware()
         ]);
     }
 
 
@@ -70,7 +70,7 @@ public function getCommentNodeForId(int $commentId): ?CommentTreeNode
     public function canUpdateAny(): bool
     {
         foreach ($this->comments as $comment) {
-            if (userCan('comment-update', $comment)) {
+            if (userCan(\BookStack\Permissions\Permission::CommentUpdate, $comment)) {
                 return true;
             }
         }
 
@@ -26,14 +26,14 @@ public function generate(): array
              array_push($classes, ...$this->generateClassesForTag($tag));
         }
 
-        if ($this->entity instanceof BookChild && userCan('view', $this->entity->book)) {
+        if ($this->entity instanceof BookChild && userCan(\BookStack\Permissions\Permission::View, $this->entity->book)) {
             $bookTags = $this->entity->book->tags;
             foreach ($bookTags as $bookTag) {
                  array_push($classes, ...$this->generateClassesForTag($bookTag, 'book-'));
             }
         }
 
-        if ($this->entity instanceof Page && $this->entity->chapter && userCan('view', $this->entity->chapter)) {
+        if ($this->entity instanceof Page && $this->entity->chapter && userCan(\BookStack\Permissions\Permission::View, $this->entity->chapter)) {
             $chapterTags = $this->entity->chapter->tags;
             foreach ($chapterTags as $chapterTag) {
                  array_push($classes, ...$this->generateClassesForTag($chapterTag, 'chapter-'));
 
@@ -342,7 +342,7 @@ public function destroyDraft(string $bookSlug, int $pageId)
 
         $this->showSuccessNotification(trans('entities.pages_delete_draft_success'));
 
-        if ($chapter && userCan('view', $chapter)) {
+        if ($chapter && userCan(\BookStack\Permissions\Permission::View, $chapter)) {
             return redirect($chapter->getUrl());
         }
 
 
@@ -87,7 +87,7 @@ public function move(Chapter $chapter, string $parentIdentifier): Book
             throw new MoveOperationException('Book to move chapter into not found');
         }
 
-        if (!userCan('chapter-create', $parent)) {
+        if (!userCan(\BookStack\Permissions\Permission::ChapterCreate, $parent)) {
             throw new PermissionsException('User does not have permission to create a chapter within the chosen book');
         }
 
 
@@ -55,7 +55,7 @@ public function getNewDraftPage(Entity $parent)
         }
 
         $defaultTemplate = $page->chapter->defaultTemplate ?? $page->book->defaultTemplate;
-        if ($defaultTemplate && userCan('view', $defaultTemplate)) {
+        if ($defaultTemplate && userCan(\BookStack\Permissions\Permission::View, $defaultTemplate)) {
             $page->forceFill([
                 'html'  => $defaultTemplate->html,
                 'markdown' => $defaultTemplate->markdown,
@@ -142,7 +142,7 @@ public function update(Page $page, array $input): Page
 
     protected function updateTemplateStatusAndContentFromInput(Page $page, array $input): void
     {
-        if (isset($input['template']) && userCan('templates-manage')) {
+        if (isset($input['template']) && userCan(\BookStack\Permissions\Permission::TemplatesManage)) {
             $page->template = ($input['template'] === 'true');
         }
 
@@ -165,7 +165,7 @@ protected function updateTemplateStatusAndContentFromInput(Page $page, array $in
             $pageContent->setNewHTML($input['html'], user());
         }
 
-        if (($newEditor !== $currentEditor || empty($page->editor)) && userCan('editor-change')) {
+        if (($newEditor !== $currentEditor || empty($page->editor)) && userCan(\BookStack\Permissions\Permission::EditorChange)) {
             $page->editor = $newEditor->value;
         } elseif (empty($page->editor)) {
             $page->editor = $defaultEditor->value;
@@ -271,7 +271,7 @@ public function move(Page $page, string $parentIdentifier): Entity
             throw new MoveOperationException('Book or chapter to move page into not found');
         }
 
-        if (!userCan('page-create', $parent)) {
+        if (!userCan(\BookStack\Permissions\Permission::PageCreate, $parent)) {
             throw new PermissionsException('User does not have permission to create a page within the new parent');
         }
 
 
@@ -49,7 +49,7 @@ public function cloneChapter(Chapter $original, Book $parent, string $newName):
 
         $copyChapter = $this->chapterRepo->create($chapterDetails, $parent);
 
-        if (userCan('page-create', $copyChapter)) {
+        if (userCan(\BookStack\Permissions\Permission::PageCreate, $copyChapter)) {
             /** @var Page $page */
             foreach ($original->getVisiblePages() as $page) {
                 $this->clonePage($page, $copyChapter, $page->name);
@@ -74,19 +74,19 @@ public function cloneBook(Book $original, string $newName): Book
         // Clone contents
         $directChildren = $original->getDirectVisibleChildren();
         foreach ($directChildren as $child) {
-            if ($child instanceof Chapter && userCan('chapter-create', $copyBook)) {
+            if ($child instanceof Chapter && userCan(\BookStack\Permissions\Permission::ChapterCreate, $copyBook)) {
                 $this->cloneChapter($child, $copyBook, $child->name);
             }
 
-            if ($child instanceof Page && !$child->draft && userCan('page-create', $copyBook)) {
+            if ($child instanceof Page && !$child->draft && userCan(\BookStack\Permissions\Permission::PageCreate, $copyBook)) {
                 $this->clonePage($child, $copyBook, $child->name);
             }
         }
 
         // Clone bookshelf relationships
         /** @var Bookshelf $shelf */
         foreach ($original->shelves as $shelf) {
-            if (userCan('bookshelf-update', $shelf)) {
+            if (userCan(\BookStack\Permissions\Permission::BookshelfUpdate, $shelf)) {
                 $shelf->appendBook($copyBook);
             }
         }
 
@@ -100,7 +100,7 @@ protected function getEditorType(Page $page): PageEditorType
 
         // Use requested editor if valid and if we have permission
         $requestedType = PageEditorType::fromRequestValue($this->requestedEditor);
-        if ($requestedType && userCan('editor-change')) {
+        if ($requestedType && userCan(\BookStack\Permissions\Permission::EditorChange)) {
             $editorType = $requestedType;
         }
 
 
@@ -150,7 +150,7 @@ public function updateBookPermissionsFromShelf(Bookshelf $shelf, $checkUserPermi
 
         /** @var Book $book */
         foreach ($shelfBooks as $book) {
-            if ($checkUserPermissions && !userCan('restrictions-manage', $book)) {
+            if ($checkUserPermissions && !userCan(\BookStack\Permissions\Permission::RestrictionsManage, $book)) {
                 continue;
             }
             $book->permissions()->delete();
 
@@ -6,6 +6,7 @@
 use BookStack\Exports\ExportFormatter;
 use BookStack\Exports\ZipExports\ZipExportBuilder;
 use BookStack\Http\ApiController;
+use BookStack\Permissions\Permission;
 use Throwable;
 
 class BookExportApiController extends ApiController
@@ -14,7 +15,7 @@ public function __construct(
         protected ExportFormatter $exportFormatter,
         protected BookQueries $queries,
     ) {
-        $this->middleware('can:content-export');
+        $this->middleware(Permission::ContentExport->middleware());
     }
 
     /**
Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@`
`6`	`6`	`use BookStack\Activity\Models\Webhook;`
`7`	`7`	`use BookStack\Activity\Queries\WebhooksAllPaginatedAndSorted;`
`8`	`8`	`use BookStack\Http\Controller;`
	`9`	`+use BookStack\Permissions\Permission;`
`9`	`10`	`use BookStack\Util\SimpleListOptions;`
`10`	`11`	`use Illuminate\Http\Request;`
`11`	`12`
`@@ -14,7 +15,7 @@ class WebhookController extends Controller`
`14`	`15`	`public function __construct()`
`15`	`16`	`{`
`16`	`17`	`$this->middleware([`
`17`		`- 'can:settings-manage',`
	`18`	`+ Permission::SettingsManage->middleware()`
`18`	`19`	`]);`
`19`	`20`	`}`
`20`	`21`
Original file line number	Diff line number	Diff line change
`@@ -70,7 +70,7 @@ public function getCommentNodeForId(int $commentId): ?CommentTreeNode`
`70`	`70`	`public function canUpdateAny(): bool`
`71`	`71`	`{`
`72`	`72`	`foreach ($this->comments as $comment) {`
`73`		`- if (userCan('comment-update', $comment)) {`
	`73`	`+ if (userCan(\BookStack\Permissions\Permission::CommentUpdate, $comment)) {`
`74`	`74`	`return true;`
`75`	`75`	`}`
`76`	`76`	`}`
Original file line number	Diff line number	Diff line change
`@@ -26,14 +26,14 @@ public function generate(): array`
`26`	`26`	`array_push($classes, ...$this->generateClassesForTag($tag));`
`27`	`27`	`}`
`28`	`28`
`29`		`- if ($this->entity instanceof BookChild && userCan('view', $this->entity->book)) {`
	`29`	`+ if ($this->entity instanceof BookChild && userCan(\BookStack\Permissions\Permission::View, $this->entity->book)) {`
`30`	`30`	`$bookTags = $this->entity->book->tags;`
`31`	`31`	`foreach ($bookTags as $bookTag) {`
`32`	`32`	`array_push($classes, ...$this->generateClassesForTag($bookTag, 'book-'));`
`33`	`33`	`}`
`34`	`34`	`}`
`35`	`35`
`36`		`- if ($this->entity instanceof Page && $this->entity->chapter && userCan('view', $this->entity->chapter)) {`
	`36`	`+ if ($this->entity instanceof Page && $this->entity->chapter && userCan(\BookStack\Permissions\Permission::View, $this->entity->chapter)) {`
`37`	`37`	`$chapterTags = $this->entity->chapter->tags;`
`38`	`38`	`foreach ($chapterTags as $chapterTag) {`
`39`	`39`	`array_push($classes, ...$this->generateClassesForTag($chapterTag, 'chapter-'));`
Original file line number	Diff line number	Diff line change
`@@ -342,7 +342,7 @@ public function destroyDraft(string $bookSlug, int $pageId)`
`342`	`342`
`343`	`343`	`$this->showSuccessNotification(trans('entities.pages_delete_draft_success'));`
`344`	`344`
`345`		`- if ($chapter && userCan('view', $chapter)) {`
	`345`	`+ if ($chapter && userCan(\BookStack\Permissions\Permission::View, $chapter)) {`
`346`	`346`	`return redirect($chapter->getUrl());`
`347`	`347`	`}`
`348`	`348`
Original file line number	Diff line number	Diff line change
`@@ -87,7 +87,7 @@ public function move(Chapter $chapter, string $parentIdentifier): Book`
`87`	`87`	`throw new MoveOperationException('Book to move chapter into not found');`
`88`	`88`	`}`
`89`	`89`
`90`		`- if (!userCan('chapter-create', $parent)) {`
	`90`	`+ if (!userCan(\BookStack\Permissions\Permission::ChapterCreate, $parent)) {`
`91`	`91`	`throw new PermissionsException('User does not have permission to create a chapter within the chosen book');`
`92`	`92`	`}`
`93`	`93`
Original file line number	Diff line number	Diff line change
`@@ -55,7 +55,7 @@ public function getNewDraftPage(Entity $parent)`
`55`	`55`	`}`
`56`	`56`
`57`	`57`	`$defaultTemplate = $page->chapter->defaultTemplate ?? $page->book->defaultTemplate;`
`58`		`- if ($defaultTemplate && userCan('view', $defaultTemplate)) {`
	`58`	`+ if ($defaultTemplate && userCan(\BookStack\Permissions\Permission::View, $defaultTemplate)) {`
`59`	`59`	`$page->forceFill([`
`60`	`60`	`'html' => $defaultTemplate->html,`
`61`	`61`	`'markdown' => $defaultTemplate->markdown,`
`@@ -142,7 +142,7 @@ public function update(Page $page, array $input): Page`
`142`	`142`
`143`	`143`	`protected function updateTemplateStatusAndContentFromInput(Page $page, array $input): void`
`144`	`144`	`{`
`145`		`- if (isset($input['template']) && userCan('templates-manage')) {`
	`145`	`+ if (isset($input['template']) && userCan(\BookStack\Permissions\Permission::TemplatesManage)) {`
`146`	`146`	`$page->template = ($input['template'] === 'true');`
`147`	`147`	`}`
`148`	`148`
`@@ -165,7 +165,7 @@ protected function updateTemplateStatusAndContentFromInput(Page $page, array $in`
`165`	`165`	`$pageContent->setNewHTML($input['html'], user());`
`166`	`166`	`}`
`167`	`167`
`168`		`- if (($newEditor !== $currentEditor \|\| empty($page->editor)) && userCan('editor-change')) {`
	`168`	`+ if (($newEditor !== $currentEditor \|\| empty($page->editor)) && userCan(\BookStack\Permissions\Permission::EditorChange)) {`
`169`	`169`	`$page->editor = $newEditor->value;`
`170`	`170`	`} elseif (empty($page->editor)) {`
`171`	`171`	`$page->editor = $defaultEditor->value;`
`@@ -271,7 +271,7 @@ public function move(Page $page, string $parentIdentifier): Entity`
`271`	`271`	`throw new MoveOperationException('Book or chapter to move page into not found');`
`272`	`272`	`}`
`273`	`273`
`274`		`- if (!userCan('page-create', $parent)) {`
	`274`	`+ if (!userCan(\BookStack\Permissions\Permission::PageCreate, $parent)) {`
`275`	`275`	`throw new PermissionsException('User does not have permission to create a page within the new parent');`
`276`	`276`	`}`
`277`	`277`
Original file line number	Diff line number	Diff line change
`@@ -49,7 +49,7 @@ public function cloneChapter(Chapter $original, Book $parent, string $newName):`
`49`	`49`
`50`	`50`	`$copyChapter = $this->chapterRepo->create($chapterDetails, $parent);`
`51`	`51`
`52`		`- if (userCan('page-create', $copyChapter)) {`
	`52`	`+ if (userCan(\BookStack\Permissions\Permission::PageCreate, $copyChapter)) {`
`53`	`53`	`/** @var Page $page */`
`54`	`54`	`foreach ($original->getVisiblePages() as $page) {`
`55`	`55`	`$this->clonePage($page, $copyChapter, $page->name);`
`@@ -74,19 +74,19 @@ public function cloneBook(Book $original, string $newName): Book`
`74`	`74`	`// Clone contents`
`75`	`75`	`$directChildren = $original->getDirectVisibleChildren();`
`76`	`76`	`foreach ($directChildren as $child) {`
`77`		`- if ($child instanceof Chapter && userCan('chapter-create', $copyBook)) {`
	`77`	`+ if ($child instanceof Chapter && userCan(\BookStack\Permissions\Permission::ChapterCreate, $copyBook)) {`
`78`	`78`	`$this->cloneChapter($child, $copyBook, $child->name);`
`79`	`79`	`}`
`80`	`80`
`81`		`- if ($child instanceof Page && !$child->draft && userCan('page-create', $copyBook)) {`
	`81`	`+ if ($child instanceof Page && !$child->draft && userCan(\BookStack\Permissions\Permission::PageCreate, $copyBook)) {`
`82`	`82`	`$this->clonePage($child, $copyBook, $child->name);`
`83`	`83`	`}`
`84`	`84`	`}`
`85`	`85`
`86`	`86`	`// Clone bookshelf relationships`
`87`	`87`	`/** @var Bookshelf $shelf */`
`88`	`88`	`foreach ($original->shelves as $shelf) {`
`89`		`- if (userCan('bookshelf-update', $shelf)) {`
	`89`	`+ if (userCan(\BookStack\Permissions\Permission::BookshelfUpdate, $shelf)) {`
`90`	`90`	`$shelf->appendBook($copyBook);`
`91`	`91`	`}`
`92`	`92`	`}`
Original file line number	Diff line number	Diff line change
`@@ -100,7 +100,7 @@ protected function getEditorType(Page $page): PageEditorType`
`100`	`100`
`101`	`101`	`// Use requested editor if valid and if we have permission`
`102`	`102`	`$requestedType = PageEditorType::fromRequestValue($this->requestedEditor);`
`103`		`- if ($requestedType && userCan('editor-change')) {`
	`103`	`+ if ($requestedType && userCan(\BookStack\Permissions\Permission::EditorChange)) {`
`104`	`104`	`$editorType = $requestedType;`
`105`	`105`	`}`
`106`	`106`
Original file line number	Diff line number	Diff line change
`@@ -150,7 +150,7 @@ public function updateBookPermissionsFromShelf(Bookshelf $shelf, $checkUserPermi`
`150`	`150`
`151`	`151`	`/** @var Book $book */`
`152`	`152`	`foreach ($shelfBooks as $book) {`
`153`		`- if ($checkUserPermissions && !userCan('restrictions-manage', $book)) {`
	`153`	`+ if ($checkUserPermissions && !userCan(\BookStack\Permissions\Permission::RestrictionsManage, $book)) {`
`154`	`154`	`continue;`
`155`	`155`	`}`
`156`	`156`	`$book->permissions()->delete();`