fix:improve access controls and language

also adds improved dialogs / modals

app/Http/Controllers/PortfolioController.php

@@ -4,7 +4,7 @@ namespace App\Http\Controllers;
 
 use App\Models\Holding;
 use App\Models\Portfolio;
-use App\Models\DailyChange;
+use Illuminate\Http\Request;
 
 class PortfolioController extends Controller
 {
@@ -20,8 +20,12 @@ class PortfolioController extends Controller
     /**
      * Display the specified resource.
      */
-    public function show(Portfolio $portfolio)
+    public function show(Request $request, Portfolio $portfolio)
     {
+        if ($request->user()->cannot('readOnly', $portfolio)) {
+            abort(403);
+        }
+
         $portfolio->load(['transactions', 'holdings']);
         
         // get portfolio metrics

app/Models/Portfolio.php

@@ -69,6 +69,17 @@ class Portfolio extends Model
         });
     }
 
+    public function scopeFullAccess() 
+    {
+        return $this->whereHas('users', function ($query) {
+            $query->where('user_id', auth()->user()->id)
+                  ->where(function ($query) {
+                      $query->where('full_access', true)
+                            ->orWhere('owner', true);
+                  });
+        });
+    }
+
     public function scopeWithoutWishlists() 
     {
         return $this->where(['wishlist' => false]);