banquise/pelican-panel-mirror
13
0
Fork 1
mirror of https://github.com/pelican-dev/panel.git synced 2025-10-31 02:46:55 +01:00
Code Issues Packages Projects Releases Wiki Activity
pelican-panel-mirror/app/Services/Servers/GetUserPermissionsService.php
Boy132 35ce1d34ab
Permission check fixes (#1406)
2025-05-27 19:30:30 +02:00

39 lines
1.2 KiB
PHP
Raw Blame History

<?php
namespace App\Services\Servers;
use App\Models\User;
use App\Models\Server;
class GetUserPermissionsService
{
/**
* Returns the server specific permissions that a user has. This checks
* if they are an admin, the owner or a subuser for the server. If no
* permissions are found, an empty array is returned.
*
* @return string[]
*/
public function handle(Server $server, User $user): array
{
if ($user->isAdmin() && ($user->can('view', $server) || $user->can('update', $server))) {
$permissions = $user->can('update', $server) ? ['*'] : ['websocket.connect', 'backup.read'];
$permissions[] = 'admin.websocket.errors';
$permissions[] = 'admin.websocket.install';
$permissions[] = 'admin.websocket.transfer';
return $permissions;
}
if ($user->id === $server->owner_id) {
return ['*'];
}
/** @var \App\Models\Subuser|null $subuserPermissions */
$subuserPermissions = $server->subusers()->where('user_id', $user->id)->first();
return $subuserPermissions ? $subuserPermissions->permissions : [];
}
}
Reference in New Issue View Git Blame Copy Permalink