misc_pterodactyl-panel/app/Policies/ServerPolicy.php

45 lines
1.2 KiB
PHP
Raw Normal View History

<?php
2016-12-07 22:46:38 +00:00
namespace Pterodactyl\Policies;
use Pterodactyl\Models\User;
use Pterodactyl\Models\Server;
class ServerPolicy
{
2017-02-09 23:44:07 +00:00
/**
* Checks if the user has the given permission on/for the server.
*/
protected function checkPermission(User $user, Server $server, string $permission): bool
2017-02-09 23:44:07 +00:00
{
$subuser = $server->subusers->where('user_id', $user->id)->first();
if (!$subuser || empty($permission)) {
return false;
}
return in_array($permission, $subuser->permissions);
2017-02-09 23:44:07 +00:00
}
/**
2017-04-09 17:34:47 +00:00
* Runs before any of the functions are called. Used to determine if user is root admin, if so, ignore permissions.
*/
public function before(User $user, string $ability, Server $server): bool
{
if ($user->root_admin || $server->owner_id === $user->id) {
return true;
}
2017-04-09 17:34:47 +00:00
return $this->checkPermission($user, $server, $ability);
}
2017-12-17 19:07:38 +00:00
/**
* This is a horrendous hack to avoid Laravel's "smart" behavior that does
* not call the before() function if there isn't a function matching the
* policy permission.
*/
public function __call(string $name, mixed $arguments)
2017-12-17 19:07:38 +00:00
{
// do nothing
}
}