añadir funicionalidades de permisos y grupos

app/Policies/DocumentPolicy.php

@@ -4,10 +4,13 @@ namespace App\Policies;
 
 use App\Models\Document;
 use App\Models\User;
+use Illuminate\Auth\Access\HandlesAuthorization;
 use Illuminate\Auth\Access\Response;
 
 class DocumentPolicy
 {
+    use HandlesAuthorization;
+
     /**
      * Determine whether the user can view any models.
      */
@@ -22,7 +25,8 @@ class DocumentPolicy
     public function view(User $user, Document $document)
     {
         return $user->hasPermissionTo('view documents') 
-            && $user->hasProjectAccess($document->project_id);
+            && $user->hasProjectAccess($document->project_id)
+            && $user->hasPermissionToResource($document->resource(), 'view');
     }
 
     /**
@@ -38,7 +42,7 @@ class DocumentPolicy
      */
     public function update(User $user, Document $document): bool
     {
-        return false;
+        return $user->hasPermissionToResource($document->resource(), 'edit');
     }
 
     /**
@@ -46,7 +50,7 @@ class DocumentPolicy
      */
     public function delete(User $user, Document $document): bool
     {
-        return false;
+        return $user->hasPermissionTo('delete documents');
     }
 
     /**