use BookStack\Activity\Models\Comment;
use BookStack\Entities\Models\Page;
+use BookStack\Permissions\Permission;
class CommentTree
{
public function canUpdateAny(): bool
{
foreach ($this->comments as $comment) {
- if (userCan(\BookStack\Permissions\Permission::CommentUpdate, $comment)) {
+ if (userCan(Permission::CommentUpdate, $comment)) {
return true;
}
}
use BookStack\Entities\Models\BookChild;
use BookStack\Entities\Models\Entity;
use BookStack\Entities\Models\Page;
+use BookStack\Permissions\Permission;
class TagClassGenerator
{
array_push($classes, ...$this->generateClassesForTag($tag));
}
- if ($this->entity instanceof BookChild && userCan(\BookStack\Permissions\Permission::View, $this->entity->book)) {
+ if ($this->entity instanceof BookChild && userCan(Permission::BookView, $this->entity->book)) {
$bookTags = $this->entity->book->tags;
foreach ($bookTags as $bookTag) {
array_push($classes, ...$this->generateClassesForTag($bookTag, 'book-'));
}
}
- if ($this->entity instanceof Page && $this->entity->chapter && userCan(\BookStack\Permissions\Permission::View, $this->entity->chapter)) {
+ if ($this->entity instanceof Page && $this->entity->chapter && userCan(Permission::ChapterView, $this->entity->chapter)) {
$chapterTags = $this->entity->chapter->tags;
foreach ($chapterTags as $chapterTag) {
array_push($classes, ...$this->generateClassesForTag($chapterTag, 'chapter-'));
$this->showSuccessNotification(trans('entities.pages_delete_draft_success'));
- if ($chapter && userCan(\BookStack\Permissions\Permission::View, $chapter)) {
+ if ($chapter && userCan(Permission::ChapterView, $chapter)) {
return redirect($chapter->getUrl());
}
use BookStack\Exceptions\MoveOperationException;
use BookStack\Exceptions\PermissionsException;
use BookStack\Facades\Activity;
+use BookStack\Permissions\Permission;
use BookStack\Util\DatabaseTransaction;
use Exception;
throw new MoveOperationException('Book to move chapter into not found');
}
- if (!userCan(\BookStack\Permissions\Permission::ChapterCreate, $parent)) {
+ if (!userCan(Permission::ChapterCreate, $parent)) {
throw new PermissionsException('User does not have permission to create a chapter within the chosen book');
}
use BookStack\Exceptions\MoveOperationException;
use BookStack\Exceptions\PermissionsException;
use BookStack\Facades\Activity;
+use BookStack\Permissions\Permission;
use BookStack\References\ReferenceStore;
use BookStack\References\ReferenceUpdater;
use BookStack\Util\DatabaseTransaction;
}
$defaultTemplate = $page->chapter->defaultTemplate ?? $page->book->defaultTemplate;
- if ($defaultTemplate && userCan(\BookStack\Permissions\Permission::View, $defaultTemplate)) {
+ if ($defaultTemplate && userCan(Permission::PageView, $defaultTemplate)) {
$page->forceFill([
'html' => $defaultTemplate->html,
'markdown' => $defaultTemplate->markdown,
protected function updateTemplateStatusAndContentFromInput(Page $page, array $input): void
{
- if (isset($input['template']) && userCan(\BookStack\Permissions\Permission::TemplatesManage)) {
+ if (isset($input['template']) && userCan(Permission::TemplatesManage)) {
$page->template = ($input['template'] === 'true');
}
$pageContent->setNewHTML($input['html'], user());
}
- if (($newEditor !== $currentEditor || empty($page->editor)) && userCan(\BookStack\Permissions\Permission::EditorChange)) {
+ if (($newEditor !== $currentEditor || empty($page->editor)) && userCan(Permission::EditorChange)) {
$page->editor = $newEditor->value;
} elseif (empty($page->editor)) {
$page->editor = $defaultEditor->value;
throw new MoveOperationException('Book or chapter to move page into not found');
}
- if (!userCan(\BookStack\Permissions\Permission::PageCreate, $parent)) {
+ if (!userCan(Permission::PageCreate, $parent)) {
throw new PermissionsException('User does not have permission to create a page within the new parent');
}
use BookStack\Entities\Repos\BookRepo;
use BookStack\Entities\Repos\ChapterRepo;
use BookStack\Entities\Repos\PageRepo;
+use BookStack\Permissions\Permission;
use BookStack\Uploads\Image;
use BookStack\Uploads\ImageService;
use Illuminate\Http\UploadedFile;
$copyChapter = $this->chapterRepo->create($chapterDetails, $parent);
- if (userCan(\BookStack\Permissions\Permission::PageCreate, $copyChapter)) {
+ if (userCan(Permission::PageCreate, $copyChapter)) {
/** @var Page $page */
foreach ($original->getVisiblePages() as $page) {
$this->clonePage($page, $copyChapter, $page->name);
/**
* Clone the given book.
- * Clones all child chapters & pages.
+ * Clones all child chapters and pages.
*/
public function cloneBook(Book $original, string $newName): Book
{
// Clone contents
$directChildren = $original->getDirectVisibleChildren();
foreach ($directChildren as $child) {
- if ($child instanceof Chapter && userCan(\BookStack\Permissions\Permission::ChapterCreate, $copyBook)) {
+ if ($child instanceof Chapter && userCan(Permission::ChapterCreate, $copyBook)) {
$this->cloneChapter($child, $copyBook, $child->name);
}
- if ($child instanceof Page && !$child->draft && userCan(\BookStack\Permissions\Permission::PageCreate, $copyBook)) {
+ if ($child instanceof Page && !$child->draft && userCan(Permission::PageCreate, $copyBook)) {
$this->clonePage($child, $copyBook, $child->name);
}
}
// Clone bookshelf relationships
/** @var Bookshelf $shelf */
foreach ($original->shelves as $shelf) {
- if (userCan(\BookStack\Permissions\Permission::BookshelfUpdate, $shelf)) {
+ if (userCan(Permission::BookshelfUpdate, $shelf)) {
$shelf->appendBook($copyBook);
}
}
use BookStack\Entities\Queries\EntityQueries;
use BookStack\Entities\Tools\Markdown\HtmlToMarkdown;
use BookStack\Entities\Tools\Markdown\MarkdownToHtml;
+use BookStack\Permissions\Permission;
class PageEditorData
{
{
$editorType = PageEditorType::forPage($page) ?: PageEditorType::getSystemDefault();
- // Use requested editor if valid and if we have permission
+ // Use the requested editor if valid and if we have permission
$requestedType = PageEditorType::fromRequestValue($this->requestedEditor);
- if ($requestedType && userCan(\BookStack\Permissions\Permission::EditorChange)) {
+ if ($requestedType && userCan(Permission::EditorChange)) {
$editorType = $requestedType;
}
/** @var Book $book */
foreach ($shelfBooks as $book) {
- if ($checkUserPermissions && !userCan(\BookStack\Permissions\Permission::RestrictionsManage, $book)) {
+ if ($checkUserPermissions && !userCan(Permission::RestrictionsManage, $book)) {
continue;
}
$book->permissions()->delete();
use BookStack\Exports\ZipExports\ZipExportValidator;
use BookStack\Exports\ZipExports\ZipImportRunner;
use BookStack\Facades\Activity;
+use BookStack\Permissions\Permission;
use BookStack\Uploads\FileStorage;
use Illuminate\Database\Eloquent\Builder;
use Illuminate\Database\Eloquent\Collection;
{
$query = Import::query();
- if (!userCan(\BookStack\Permissions\Permission::SettingsManage)) {
+ if (!userCan(Permission::SettingsManage)) {
$query->where('created_by', user()->id);
}
{
$query = Import::query();
- if (!userCan(\BookStack\Permissions\Permission::SettingsManage)) {
+ if (!userCan(Permission::SettingsManage)) {
$query->where('created_by', user()->id);
}
use BookStack\Exports\ZipExports\Models\ZipExportImage;
use BookStack\Exports\ZipExports\Models\ZipExportModel;
use BookStack\Exports\ZipExports\Models\ZipExportPage;
+use BookStack\Permissions\Permission;
use BookStack\Uploads\Attachment;
use BookStack\Uploads\Image;
// Find and include images if in visibility
$page = $model->getPage();
$pageExportModel = $this->pages[$page->id] ?? ($exportModel instanceof ZipExportPage ? $exportModel : null);
- if (isset($this->images[$model->id]) || ($page && $pageExportModel && userCan(\BookStack\Permissions\Permission::View, $page))) {
+ if (isset($this->images[$model->id]) || ($page && $pageExportModel && userCan(Permission::PageView, $page))) {
if (!isset($this->images[$model->id])) {
$exportImage = ZipExportImage::fromModel($model, $files);
$this->images[$model->id] = $exportImage;
use BookStack\Exports\ZipExports\Models\ZipExportImage;
use BookStack\Exports\ZipExports\Models\ZipExportPage;
use BookStack\Exports\ZipExports\Models\ZipExportTag;
+use BookStack\Permissions\Permission;
use BookStack\Uploads\Attachment;
use BookStack\Uploads\AttachmentService;
use BookStack\Uploads\FileStorage;
$attachments = [];
if ($exportModel instanceof ZipExportBook) {
- if (!userCan(\BookStack\Permissions\Permission::BookCreateAll)) {
+ if (!userCan(Permission::BookCreateAll)) {
$errors[] = trans('errors.import_perms_books');
}
array_push($pages, ...$exportModel->pages);
if (count($pages) > 0) {
if ($parent) {
- if (!userCan(\BookStack\Permissions\Permission::PageCreate, $parent)) {
+ if (!userCan(Permission::PageCreate, $parent)) {
$errors[] = trans('errors.import_perms_pages');
}
} else {
- $hasPermission = userCan(\BookStack\Permissions\Permission::PageCreateAll) || userCan(\BookStack\Permissions\Permission::PageCreateOwn);
+ $hasPermission = userCan(Permission::PageCreateAll) || userCan(Permission::PageCreateOwn);
if (!$hasPermission) {
$errors[] = trans('errors.import_perms_pages');
}
}
if (count($images) > 0) {
- if (!userCan(\BookStack\Permissions\Permission::ImageCreateAll)) {
+ if (!userCan(Permission::ImageCreateAll)) {
$errors[] = trans('errors.import_perms_images');
}
}
if (count($attachments) > 0) {
- if (!userCan(\BookStack\Permissions\Permission::AttachmentCreateAll)) {
+ if (!userCan(Permission::AttachmentCreateAll)) {
$errors[] = trans('errors.import_perms_attachments');
}
}
use BookStack\Entities\Models\Entity;
use BookStack\Entities\Models\Page;
use BookStack\Entities\Queries\EntityQueries;
+use BookStack\Permissions\Permission;
class BookSorter
{
$hasNewParent = $newBook->id !== $model->book_id || ($model instanceof Page && $model->chapter_id !== ($sortMapItem->parentChapterId ?? 0));
if ($model instanceof Chapter) {
- $hasPermission = userCan(\BookStack\Permissions\Permission::BookUpdate, $currentParent)
- && userCan(\BookStack\Permissions\Permission::BookUpdate, $newBook)
- && userCan(\BookStack\Permissions\Permission::ChapterUpdate, $model)
- && (!$hasNewParent || userCan(\BookStack\Permissions\Permission::ChapterCreate, $newBook))
- && (!$hasNewParent || userCan(\BookStack\Permissions\Permission::ChapterDelete, $model));
+ $hasPermission = userCan(Permission::BookUpdate, $currentParent)
+ && userCan(Permission::BookUpdate, $newBook)
+ && userCan(Permission::ChapterUpdate, $model)
+ && (!$hasNewParent || userCan(Permission::ChapterCreate, $newBook))
+ && (!$hasNewParent || userCan(Permission::ChapterDelete, $model));
if (!$hasPermission) {
return false;
return false;
}
- $hasPageEditPermission = userCan(\BookStack\Permissions\Permission::PageUpdate, $model);
+ $hasPageEditPermission = userCan(Permission::PageUpdate, $model);
$newParentInRightLocation = ($newParent instanceof Book || ($newParent instanceof Chapter && $newParent->book_id === $newBook->id));
$newParentPermission = ($newParent instanceof Chapter) ? 'chapter-update' : 'book-update';
$hasNewParentPermission = userCan($newParentPermission, $newParent);
- $hasDeletePermissionIfMoving = (!$hasNewParent || userCan(\BookStack\Permissions\Permission::PageDelete, $model));
- $hasCreatePermissionIfMoving = (!$hasNewParent || userCan(\BookStack\Permissions\Permission::PageCreate, $newParent));
+ $hasDeletePermissionIfMoving = (!$hasNewParent || userCan(Permission::PageDelete, $model));
+ $hasCreatePermissionIfMoving = (!$hasNewParent || userCan(Permission::PageCreate, $newParent));
$hasPermission = $hasCurrentParentPermission
&& $newParentInRightLocation
return $this->jsonError(trans('errors.drawing_data_not_found'), 404);
}
- if ($image->type !== 'drawio' || !userCan(\BookStack\Permissions\Permission::PageView, $image->getPage())) {
+ if ($image->type !== 'drawio' || !userCan(Permission::PageView, $image->getPage())) {
return $this->jsonError(trans('errors.drawing_data_not_found'), 404);
}
'profile_image' => array_merge(['nullable'], $this->getImageValidationRules()),
]);
- $this->userRepo->update($user, $validated, userCan(\BookStack\Permissions\Permission::UsersManage));
+ $this->userRepo->update($user, $validated, userCan(Permission::UsersManage));
- // Save profile image if in request
+ // Save the profile image if in request
if ($request->hasFile('profile_image')) {
$imageUpload = $request->file('profile_image');
$imageRepo->destroyImage($user->avatar);
$user->save();
}
- // Delete the profile image if reset option is in request
+ // Delete the profile image if the reset option is in request
if ($request->has('profile_image_reset')) {
$imageRepo->destroyImage($user->avatar);
$user->image_id = 0;
$this->preventAccessInDemoMode();
$requestNewOwnerId = intval($request->get('new_owner_id')) ?: null;
- $newOwnerId = userCan(\BookStack\Permissions\Permission::UsersManage) ? $requestNewOwnerId : null;
+ $newOwnerId = userCan(Permission::UsersManage) ? $requestNewOwnerId : null;
$this->userRepo->destroy(user(), $newOwnerId);
{
$data = $this->validate($request, $this->rules($id)['update']);
$user = $this->userRepo->getById($id);
- $this->userRepo->update($user, $data, userCan(\BookStack\Permissions\Permission::UsersManage));
+ $this->userRepo->update($user, $data, userCan(Permission::UsersManage));
$this->singleFormatter($user);
return response()->json($user);
namespace BookStack\Users\Controllers;
use BookStack\Http\Controller;
+use BookStack\Permissions\Permission;
use BookStack\Users\Models\User;
use Illuminate\Http\Request;
public function forSelect(Request $request)
{
$hasPermission = !user()->isGuest() && (
- userCan(\BookStack\Permissions\Permission::UsersManage)
- || userCan(\BookStack\Permissions\Permission::RestrictionsManageOwn)
- || userCan(\BookStack\Permissions\Permission::RestrictionsManageAll)
+ userCan(Permission::UsersManage)
+ || userCan(Permission::RestrictionsManageOwn)
+ || userCan(Permission::RestrictionsManageAll)
);
if (!$hasPermission) {
<h5>{{ trans('entities.books_navigation') }}</h5>
<ul class="sidebar-page-list mt-xs menu entity-list">
- @if (userCan(\BookStack\Permissions\Permission::View, $book))
+ @if (userCan(\BookStack\Permissions\Permission::BookView, $book))
<li class="list-item-book book">
@include('entities.list-item-basic', ['entity' => $book, 'classes' => ($current->matches($book)? 'selected' : '')])
</li>
@if($image->createdBy)
<div>@icon('user') {{ trans('components.image_uploaded_by', ['userName' => $image->createdBy->name]) }}</div>
@endif
- @if(($page = $image->getPage()) && userCan(\BookStack\Permissions\Permission::View, $page))
+ @if(($page = $image->getPage()) && userCan(\BookStack\Permissions\Permission::PageView, $page))
<div>
@icon('page')
{!! trans('components.image_uploaded_to', [
<span>{{ trans('common.edit') }}</span>
</a>
@endif
- @if(userCanOnAny(\BookStack\Permissions\Permission::Create, \BookStack\Entities\Models\Book::class) || userCanOnAny('create', \BookStack\Entities\Models\Chapter::class) || userCan(\BookStack\Permissions\Permission::PageCreateAll) || userCan(\BookStack\Permissions\Permission::PageCreateOwn))
+ @if(userCan(\BookStack\Permissions\Permission::PageCreateAll) || userCan(\BookStack\Permissions\Permission::PageCreateOwn) || userCanOnAny(\BookStack\Permissions\Permission::Create, \BookStack\Entities\Models\Book::class) || userCanOnAny(\BookStack\Permissions\Permission::Create, \BookStack\Entities\Models\Chapter::class))
<a href="{{ $page->getUrl('/copy') }}" data-shortcut="copy" class="icon-list-item">
<span>@icon('copy')</span>
<span>{{ trans('common.copy') }}</span>
projects / bookstack / commitdiff