- Add seeders for roles & permissions.

- Add admin dashboard route. - Add middleware for checking if the user is admin.
hackedhorizon · Sep 4, 2024 · b50edb0 · b50edb0
1 parent 8d44d0a
commit b50edb0
Show file tree

Hide file tree

Showing 15 changed files with 154 additions and 2 deletions.
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
@@ -66,5 +66,6 @@ class Kernel extends HttpKernel
         'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
         'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
         'translate' => \App\Http\Middleware\SetLocale::class,
+        'admin' => \App\Http\Middleware\AdminMiddleware::class,
     ];
 }
diff --git a/app/Http/Middleware/AdminMiddleware.php b/app/Http/Middleware/AdminMiddleware.php
@@ -0,0 +1,26 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Auth;
+use Symfony\Component\HttpFoundation\Response;
+
+class AdminMiddleware
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        if (!Auth::check() || !Auth::user()->hasRole('admin'))
+        {
+            abort(403);
+        }
+
+        return $next($request);
+    }
+}
diff --git a/app/Livewire/AdminPanel/Dashboard.php b/app/Livewire/AdminPanel/Dashboard.php
@@ -0,0 +1,13 @@
+<?php
+
+namespace App\Livewire\AdminPanel;
+
+use Livewire\Component;
+
+class Dashboard extends Component
+{
+    public function render()
+    {
+        return view('livewire.admin-panel.dashboard');
+    }
+}
diff --git a/app/Livewire/Auth/Permissions.php b/app/Livewire/Auth/Permissions.php
@@ -0,0 +1,13 @@
+<?php
+
+namespace App\Livewire\Auth;
+
+use Livewire\Component;
+
+class Permissions extends Component
+{
+    public function render()
+    {
+        return view('livewire.auth.permissions');
+    }
+}
diff --git a/app/Models/User.php b/app/Models/User.php
@@ -10,10 +10,11 @@
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Foundation\Auth\User as Authenticatable;
 use Laravel\Sanctum\HasApiTokens;
+use Spatie\Permission\Traits\HasRoles;
 
 class User extends Authenticatable implements MustVerifyEmail
 {
-    use CanResetPassword, HasApiTokens, HasFactory, Notifiable;
+    use CanResetPassword, HasApiTokens, HasFactory, Notifiable, HasRoles;
 
     /**
      * The attributes that are mass assignable.

diff --git a/config/app.php b/config/app.php
@@ -187,6 +187,7 @@
         App\Providers\EmailVerificationServiceProvider::class,
         App\Providers\LocalizationServiceProvider::class,
         App\Providers\ReadPostServiceProvider::class,
+        Spatie\Permission\PermissionServiceProvider::class,
     ])->toArray(),
 
     /*

diff --git a/database/seeders/DatabaseSeeder.php b/database/seeders/DatabaseSeeder.php
@@ -12,6 +12,8 @@ class DatabaseSeeder extends Seeder
     public function run(): void
     {
         $this->call([
+            RoleSeeder::class,
+            PermissionSeeder::class,
             UserSeeder::class,
             FailedLoginAttemptSeeder::class,
             CategoryPostSeeder::class,

diff --git a/database/seeders/PermissionSeeder.php b/database/seeders/PermissionSeeder.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Database\Seeders;
+
+use Illuminate\Database\Console\Seeds\WithoutModelEvents;
+use Illuminate\Database\Seeder;
+use Spatie\Permission\Models\Permission;
+
+class PermissionSeeder extends Seeder
+{
+    /**
+     * Run the database seeds.
+     */
+    public function run(): void
+    {
+        $createArticles = Permission::create(['name' => 'create articles']);
+        $createArticles->assignRole('admin');
+    }
+}
diff --git a/database/seeders/RoleSeeder.php b/database/seeders/RoleSeeder.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Database\Seeders;
+
+use Illuminate\Database\Console\Seeds\WithoutModelEvents;
+use Illuminate\Database\Seeder;
+use Spatie\Permission\Models\Role;
+
+class RoleSeeder extends Seeder
+{
+    /**
+     * Create user and admin role.
+     */
+    public function run(): void
+    {
+        Role::create(['name' => 'admin']);
+        Role::create(['name' => 'user']);
+    }
+}
diff --git a/database/seeders/UserSeeder.php b/database/seeders/UserSeeder.php
@@ -18,11 +18,19 @@ public function run(): void
     public function createDefaultUsers()
     {
         // Create a default guest user with fixed credentials (username: test, password: password)
-        $user = User::factory(User::class)->create([
+        $defaultUser = User::factory(User::class)->create([
             'username' => 'test',
             'password' => bcrypt('password'),
         ]);
 
+        $adminUser = User::factory(User::class)->create([
+            'username' => 'admin',
+            'password' => bcrypt('password'),
+        ]);
+
+        $defaultUser->assignRole('user');
+        $adminUser->assignRole('admin');
+
         // Create 10 dummy users using the User factory
         User::factory(10)->create();
     }

diff --git a/resources/views/livewire/admin-panel/dashboard.blade.php b/resources/views/livewire/admin-panel/dashboard.blade.php
@@ -0,0 +1,3 @@
+<div>
+    {{-- If your happiness depends on money, you will never be happy with yourself. --}}
+</div>
diff --git a/resources/views/livewire/auth/permissions.blade.php b/resources/views/livewire/auth/permissions.blade.php
@@ -0,0 +1,3 @@
+<div>
+    {{-- Knowing others is intelligence; knowing yourself is true wisdom. --}}
+</div>
diff --git a/routes/web.php b/routes/web.php
@@ -1,5 +1,6 @@
 <?php
 
+use App\Livewire\AdminPanel\Dashboard;
 use App\Livewire\Home;
 use App\Livewire\Posts\Index;
 use App\Livewire\Posts\Show;
@@ -24,4 +25,8 @@
     Route::get('/settings', Settings::class)->name('guest.settings');
 });
 
+Route::middleware(['auth', 'admin', 'translate'])->prefix('admin')->group(function () {
+    Route::get('/', Dashboard::class)->name('admin.dashboard');
+});
+
 require __DIR__.'/auth.php';
diff --git a/tests/Feature/Livewire/AdminPanel/DashboardTest.php b/tests/Feature/Livewire/AdminPanel/DashboardTest.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Tests\Feature\Livewire\AdminPanel;
+
+use App\Livewire\AdminPanel\Dashboard;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+use Illuminate\Foundation\Testing\WithFaker;
+use Livewire\Livewire;
+use Tests\TestCase;
+
+class DashboardTest extends TestCase
+{
+    /** @test */
+    public function renders_successfully()
+    {
+        Livewire::test(Dashboard::class)
+            ->assertStatus(200);
+    }
+}
diff --git a/tests/Feature/Livewire/Auth/PermissionsTest.php b/tests/Feature/Livewire/Auth/PermissionsTest.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Tests\Feature\Livewire\Auth;
+
+use App\Livewire\Auth\Permissions;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+use Illuminate\Foundation\Testing\WithFaker;
+use Livewire\Livewire;
+use Tests\TestCase;
+
+class PermissionsTest extends TestCase
+{
+    /** @test */
+    public function renders_successfully()
+    {
+        Livewire::test(Permissions::class)
+            ->assertStatus(200);
+    }
+}