91 lines
2.1 KiB
PHP
91 lines
2.1 KiB
PHP
<?php
|
|
|
|
namespace App\Models;
|
|
|
|
use Illuminate\Database\Eloquent\Relations\BelongsToMany;
|
|
use Illuminate\Foundation\Auth\User as Authenticatable;
|
|
use Illuminate\Notifications\Notifiable;
|
|
use Laravel\Sanctum\HasApiTokens;
|
|
|
|
class AdminUser extends Authenticatable
|
|
{
|
|
use HasApiTokens;
|
|
use Notifiable;
|
|
|
|
public const ROLE_SUPER_ADMIN = 'super_admin';
|
|
|
|
protected $table = 'admin_users';
|
|
|
|
protected $fillable = [
|
|
'username',
|
|
'name',
|
|
'email',
|
|
'password',
|
|
'status',
|
|
];
|
|
|
|
protected $hidden = [
|
|
'password',
|
|
'remember_token',
|
|
];
|
|
|
|
protected function casts(): array
|
|
{
|
|
return [
|
|
'email_verified_at' => 'datetime',
|
|
'last_login_at' => 'datetime',
|
|
'password' => 'hashed',
|
|
];
|
|
}
|
|
|
|
/** @return BelongsToMany<AdminRole, AdminUser> */
|
|
public function roles(): BelongsToMany
|
|
{
|
|
return $this->belongsToMany(
|
|
AdminRole::class,
|
|
'admin_user_roles',
|
|
'admin_user_id',
|
|
'role_id',
|
|
);
|
|
}
|
|
|
|
/** 是否具备指定权限(含 `super_admin` 角色全放行)。 */
|
|
public function hasAdminPermission(string $slug): bool
|
|
{
|
|
$this->loadMissing(['roles.permissions']);
|
|
|
|
foreach ($this->roles as $role) {
|
|
if ($role->slug === self::ROLE_SUPER_ADMIN) {
|
|
return true;
|
|
}
|
|
foreach ($role->permissions as $permission) {
|
|
if ($permission->slug === $slug) {
|
|
return true;
|
|
}
|
|
}
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* @return list<string>
|
|
*/
|
|
public function adminPermissionSlugs(): array
|
|
{
|
|
$this->loadMissing(['roles.permissions']);
|
|
if ($this->roles->contains('slug', self::ROLE_SUPER_ADMIN)) {
|
|
return AdminPermission::query()->orderBy('slug')->pluck('slug')->all();
|
|
}
|
|
|
|
$out = [];
|
|
foreach ($this->roles as $role) {
|
|
foreach ($role->permissions as $permission) {
|
|
$out[$permission->slug] = true;
|
|
}
|
|
}
|
|
|
|
return array_keys($out);
|
|
}
|
|
}
|