2026-02-04 23:31:53 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
use MintyPHP\Buffer;
|
2026-02-24 08:49:40 +01:00
|
|
|
use MintyPHP\Service\Access\PermissionAuthorizationPolicy;
|
2026-02-04 23:31:53 +01:00
|
|
|
use MintyPHP\Session;
|
2026-03-05 11:17:42 +01:00
|
|
|
use MintyPHP\Support\Guard;
|
2026-02-04 23:31:53 +01:00
|
|
|
|
|
|
|
|
Guard::requireLogin();
|
|
|
|
|
|
|
|
|
|
$currentUserId = (int) ($_SESSION['user']['id'] ?? 0);
|
2026-03-04 15:56:58 +01:00
|
|
|
$authorizationService = app(\MintyPHP\Service\Access\AuthorizationService::class);
|
2026-02-24 08:49:40 +01:00
|
|
|
$decision = $authorizationService->authorize(PermissionAuthorizationPolicy::ABILITY_ADMIN_PERMISSIONS_VIEW, [
|
|
|
|
|
'actor_user_id' => $currentUserId,
|
|
|
|
|
]);
|
|
|
|
|
if (!$decision->isAllowed()) {
|
|
|
|
|
Guard::deny();
|
2026-02-04 23:31:53 +01:00
|
|
|
}
|
2026-02-24 08:49:40 +01:00
|
|
|
$capabilities = $decision->attribute('capabilities', []);
|
|
|
|
|
$canCreatePermissions = is_array($capabilities) ? (bool) ($capabilities['can_create_permission'] ?? false) : false;
|
2026-03-04 15:56:58 +01:00
|
|
|
$filterSchema = require __DIR__ . '/filter-schema.php';
|
|
|
|
|
$filterState = gridParseFilters(requestInput()->queryAll(), [
|
|
|
|
|
'search' => ['type' => 'string'],
|
|
|
|
|
'active' => ['type' => 'string', 'default' => 'all'],
|
|
|
|
|
]);
|
|
|
|
|
$listFilterContext = gridBuildListFilterContext($filterSchema, [
|
|
|
|
|
'filter_state' => $filterState,
|
|
|
|
|
'search_keys' => ['search'],
|
|
|
|
|
]);
|
|
|
|
|
$toolbarFilterSchema = $listFilterContext['toolbarFilterSchema'];
|
|
|
|
|
$toolbarFilterState = $listFilterContext['toolbarFilterState'];
|
|
|
|
|
$searchToolbarFilterSchema = $listFilterContext['searchToolbarFilterSchema'];
|
|
|
|
|
$drawerToolbarFilterSchema = $listFilterContext['drawerToolbarFilterSchema'];
|
|
|
|
|
$schemaByKey = $listFilterContext['schemaByKey'];
|
|
|
|
|
$filterChipMeta = [
|
|
|
|
|
'search' => [
|
|
|
|
|
'label' => t('Search'),
|
|
|
|
|
'type' => 'text',
|
|
|
|
|
],
|
|
|
|
|
'active' => [
|
|
|
|
|
'label' => t('Status'),
|
|
|
|
|
'type' => 'select',
|
|
|
|
|
'default' => (string) (($schemaByKey['active']['default'] ?? 'all')),
|
|
|
|
|
'options' => gridOptionMapFromAllowed((array) ($schemaByKey['active'] ?? [])),
|
|
|
|
|
],
|
|
|
|
|
];
|
|
|
|
|
$clientFilterSchema = $listFilterContext['clientFilterSchema'];
|
|
|
|
|
$searchConfig = $listFilterContext['searchConfig'];
|
2026-02-04 23:31:53 +01:00
|
|
|
|
|
|
|
|
Buffer::set('title', t('Permissions'));
|
|
|
|
|
Buffer::set('grid_lang', json_encode(gridLang(), JSON_UNESCAPED_UNICODE | JSON_UNESCAPED_SLASHES));
|
|
|
|
|
$csrfKey = Session::$csrfSessionKey;
|
|
|
|
|
$csrfToken = $_SESSION[$csrfKey] ?? '';
|
|
|
|
|
Buffer::set(
|
|
|
|
|
'grid_csrf',
|
|
|
|
|
json_encode(['key' => $csrfKey, 'token' => $csrfToken], JSON_UNESCAPED_UNICODE | JSON_UNESCAPED_SLASHES)
|
|
|
|
|
);
|