forked from ProcessMaker/processmaker
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathAuthServiceProvider.php
More file actions
109 lines (97 loc) · 3.32 KB
/
AuthServiceProvider.php
File metadata and controls
109 lines (97 loc) · 3.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
<?php
namespace ProcessMaker\Providers;
use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Cache;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Event;
use Illuminate\Support\Facades\Gate;
use Illuminate\Support\Facades\Log;
use Illuminate\Support\Facades\Schema;
use Illuminate\Support\Str;
use Laravel\Passport\Passport;
use ProcessMaker\Events\TenantResolved;
use ProcessMaker\Models\AnonymousUser;
use ProcessMaker\Models\Media;
use ProcessMaker\Models\Notification;
use ProcessMaker\Models\Permission;
use ProcessMaker\Models\Process;
use ProcessMaker\Models\ProcessRequest;
use ProcessMaker\Models\ProcessRequestToken;
use ProcessMaker\Models\ProcessVersion;
use ProcessMaker\Models\Screen;
use ProcessMaker\Models\Script;
use ProcessMaker\Models\User;
use ProcessMaker\Policies\MediaPolicy;
use ProcessMaker\Policies\ProcessPolicy;
use ProcessMaker\Policies\ProcessRequestPolicy;
use ProcessMaker\Policies\ProcessRequestTokenPolicy;
use ProcessMaker\Policies\ProcessVersionPolicy;
use ProcessMaker\Policies\ScriptPolicy;
use ProcessMaker\Policies\UserPolicy;
/**
* Our AuthService Provider binds our base processmaker provider and registers any policies, if defined.
*/
class AuthServiceProvider extends ServiceProvider
{
/**
* The policy mappings for the application.
*
* @var array
*/
protected $policies = [
Media::class => MediaPolicy::class,
Process::class => ProcessPolicy::class,
ProcessVersion::class => ProcessVersionPolicy::class,
ProcessRequest::class => ProcessRequestPolicy::class,
ProcessRequestToken::class => ProcessRequestTokenPolicy::class,
User::class => UserPolicy::class,
Script::class => ScriptPolicy::class,
];
/**
* Register any authentication / authorization services.
*
* @return void
*/
public function boot()
{
$this->registerPolicies();
Passport::enablePasswordGrant();
Passport::authorizationView('auth.oauth2.authorize');
Gate::before(function ($user) {
if ($user->is_administrator) {
return true;
}
// Let other policies handle the request.
return null;
});
Auth::viaRequest('anon', function ($request) {
if ($request->user()) {
return $request->user();
}
return app(AnonymousUser::class);
});
}
public function defineGates()
{
try {
// Cache the permissions for a day to improve performance
$permissions = Cache::remember('permissions', 86400, function () {
return Permission::pluck('name')->toArray();
});
foreach ($permissions as $permission) {
Gate::define($permission, function ($user) use ($permission) {
return $user->hasPermission($permission);
});
}
} catch (\Exception $e) {
Log::notice('Unable to register gates. Either no database connection or no permissions table exists.');
}
}
public function register()
{
Event::listen(TenantResolved::class, function ($tenant) {
$this->defineGates();
});
}
}