refactor(authz): Phase 2 — replace hasRole('Admin') with permission checks · 8025fa6d05 - construprogress

refactor(authz): Phase 2 — replace hasRole('Admin') with permission checks

Permissions now actually govern access instead of the hard-coded Admin role:
- Super-admin bypass (see all projects / full access) -> can('manage all')
  in Project::scopeAccessibleBy, ProjectMap, ProjectDashboard, PhaseGantt,
  LayerManager, ProjectReportController.
- Redundant '|| hasRole(Admin)' fallbacks dropped (Gate::before already lets
  manage-all through can()): LayerManager (upload/delete layers), MediaManager
  (upload), ProjectMap (update progress), ProjectUsers/ProjectCompanies
  (assign users).
- Admin-only screens now gated by the matching permission: AdminUsers/UserView
  -> can('view users'), UserForm -> can('create users')|can('edit users'),
  CompanyView -> can('view companies').
- MediaManager delete: can('delete media') OR owner.
- Kept UserForm's domain guard (can't remove your own Admin role).

Note: the /admin route group still has middleware can:manage all, so admin
screens stay super-admin-only until that group is relaxed per-route.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

This commit is contained in:

Javier Braña

2026-06-17 19:10:23 +02:00

parent efccb67635

commit 8025fa6d05

13 changed files with 20 additions and 20 deletions

									
										app/Livewire/UserView.php
									
		+1
		-1
	
												View File
												
				@@ -33,7 +33,7 @@ class UserView extends Component

				    public function mount(User $user): void

				    {

				        if (!Auth::user()->hasRole('Admin')) abort(403);

				        abort_unless(Auth::user()->can('view users'), 403);

				        $this->user  = $user->load(['roles', 'company', 'projects.phases']);

				        $this->notes = $user->notes ?? '';