54 lines
1.6 KiB
PHP
54 lines
1.6 KiB
PHP
<?php
|
|
|
|
use MintyPHP\Buffer;
|
|
use MintyPHP\Support\Flash;
|
|
use MintyPHP\Support\Guard;
|
|
use MintyPHP\Router;
|
|
use MintyPHP\Service\Access\AccessServicesFactory;
|
|
use MintyPHP\Service\Access\PermissionAuthorizationPolicy;
|
|
|
|
Guard::requireLogin();
|
|
|
|
$currentUserId = (int) ($_SESSION['user']['id'] ?? 0);
|
|
$authorizationService = (new AccessServicesFactory())->createAuthorizationService();
|
|
$decision = $authorizationService->authorize(PermissionAuthorizationPolicy::ABILITY_ADMIN_PERMISSIONS_CREATE, [
|
|
'actor_user_id' => $currentUserId,
|
|
]);
|
|
if (!$decision->isAllowed()) {
|
|
Guard::deny();
|
|
}
|
|
|
|
$errors = [];
|
|
$form = [
|
|
'key' => '',
|
|
'description' => '',
|
|
'active' => 1,
|
|
'is_system' => 0,
|
|
];
|
|
|
|
if (isset($_POST['key'])) {
|
|
$result = permissionGateway()->createFromAdmin($_POST);
|
|
$form = $result['form'] ?? $form;
|
|
$errors = $result['errors'] ?? [];
|
|
|
|
if ($result['ok'] ?? false) {
|
|
$action = (string) ($_POST['action'] ?? 'create');
|
|
if ($action === 'create_close') {
|
|
Flash::success('Permission created', 'admin/permissions', 'permission_created');
|
|
Router::redirect('admin/permissions');
|
|
} else {
|
|
$id = (int) ($result['id'] ?? 0);
|
|
if ($id > 0) {
|
|
$target = "admin/permissions/edit/{$id}";
|
|
Flash::success('Permission created', $target, 'permission_created');
|
|
Router::redirect($target);
|
|
} else {
|
|
Flash::success('Permission created', 'admin/permissions', 'permission_created');
|
|
Router::redirect('admin/permissions');
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
Buffer::set('title', t('Create permission'));
|