chore: hapus RolesAndPermissionsSeeder
This commit is contained in:
@@ -12,29 +12,33 @@ class PermissionSeeder extends Seeder
|
|||||||
{
|
{
|
||||||
app()[\Spatie\Permission\PermissionRegistrar::class]->forgetCachedPermissions();
|
app()[\Spatie\Permission\PermissionRegistrar::class]->forgetCachedPermissions();
|
||||||
|
|
||||||
$ketua = Role::findByName('ketua');
|
// Buat roles jika belum ada
|
||||||
|
foreach (['super_admin', 'ketua', 'bendahara', 'pengurus', 'anggota', 'auditor'] as $role) {
|
||||||
|
Role::firstOrCreate(['name' => $role, 'guard_name' => 'web']);
|
||||||
|
}
|
||||||
|
|
||||||
|
// Skip jika permission belum di-generate (shield:generate belum dijalankan)
|
||||||
|
if (Permission::count() === 0) {
|
||||||
|
$this->command->warn('Permission belum ada. Jalankan: php artisan shield:generate --panel=admin');
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
|
||||||
|
$ketua = Role::findByName('ketua');
|
||||||
$bendahara = Role::findByName('bendahara');
|
$bendahara = Role::findByName('bendahara');
|
||||||
$pengurus = Role::findByName('pengurus');
|
$pengurus = Role::findByName('pengurus');
|
||||||
$anggota = Role::findByName('anggota');
|
$anggota = Role::findByName('anggota');
|
||||||
$auditor = Role::findByName('auditor');
|
$auditor = Role::findByName('auditor');
|
||||||
$superAdmin = Role::findByName('super_admin');
|
|
||||||
|
|
||||||
// Permission khusus di-generate otomatis oleh shield:generate
|
|
||||||
// via config filament-shield.custom_permissions
|
|
||||||
|
|
||||||
// Ketua: akses penuh kecuali shield roles
|
|
||||||
$ketua->syncPermissions(Permission::where('name', 'not like', '%Role%')
|
$ketua->syncPermissions(Permission::where('name', 'not like', '%Role%')
|
||||||
->where('name', 'not like', '%Permission%')
|
->where('name', 'not like', '%Permission%')
|
||||||
->get());
|
->get());
|
||||||
|
|
||||||
// Bendahara: hanya kas + iuran + artikel sendiri
|
|
||||||
$bendahara->syncPermissions(Permission::where('name', 'like', '%CashRecord%')
|
$bendahara->syncPermissions(Permission::where('name', 'like', '%CashRecord%')
|
||||||
->orWhere('name', 'like', '%CashCategory%')
|
->orWhere('name', 'like', '%CashCategory%')
|
||||||
->orWhere('name', 'like', '%MemberDue%')
|
->orWhere('name', 'like', '%MemberDue%')
|
||||||
->orWhereIn('name', ['ViewAny:Post', 'View:Post', 'Create:Post', 'Update:Post', 'Delete:Post'])
|
->orWhereIn('name', ['ViewAny:Post', 'View:Post', 'Create:Post', 'Update:Post', 'Delete:Post'])
|
||||||
->get());
|
->get());
|
||||||
|
|
||||||
// Pengurus: kegiatan + lihat anggota & divisi + artikel sendiri
|
|
||||||
$pengurus->syncPermissions(Permission::where('name', 'like', '%Activity%')
|
$pengurus->syncPermissions(Permission::where('name', 'like', '%Activity%')
|
||||||
->orWhereIn('name', [
|
->orWhereIn('name', [
|
||||||
'ViewAny:User', 'View:User',
|
'ViewAny:User', 'View:User',
|
||||||
@@ -43,7 +47,6 @@ class PermissionSeeder extends Seeder
|
|||||||
])
|
])
|
||||||
->get());
|
->get());
|
||||||
|
|
||||||
// Anggota: lihat kegiatan & voting + artikel sendiri
|
|
||||||
$anggota->syncPermissions(Permission::whereIn('name', [
|
$anggota->syncPermissions(Permission::whereIn('name', [
|
||||||
'ViewAny:Activity', 'View:Activity',
|
'ViewAny:Activity', 'View:Activity',
|
||||||
'ViewAny:Vote', 'View:Vote',
|
'ViewAny:Vote', 'View:Vote',
|
||||||
@@ -51,7 +54,6 @@ class PermissionSeeder extends Seeder
|
|||||||
'ViewAny:MemberPoint', 'View:MemberPoint',
|
'ViewAny:MemberPoint', 'View:MemberPoint',
|
||||||
])->get());
|
])->get());
|
||||||
|
|
||||||
// Auditor: read-only semua + akses audit
|
|
||||||
$auditor->syncPermissions(Permission::where('name', 'like', 'ViewAny:%')
|
$auditor->syncPermissions(Permission::where('name', 'like', 'ViewAny:%')
|
||||||
->orWhere('name', 'like', 'View:%')
|
->orWhere('name', 'like', 'View:%')
|
||||||
->orWhere('name', 'like', '%Audit%')
|
->orWhere('name', 'like', '%Audit%')
|
||||||
|
|||||||
@@ -1,38 +0,0 @@
|
|||||||
<?php
|
|
||||||
|
|
||||||
namespace Database\Seeders;
|
|
||||||
|
|
||||||
use App\Models\User;
|
|
||||||
use Illuminate\Database\Seeder;
|
|
||||||
use Illuminate\Support\Facades\Artisan;
|
|
||||||
use Spatie\Permission\Models\Role;
|
|
||||||
|
|
||||||
class RolesAndPermissionsSeeder extends Seeder
|
|
||||||
{
|
|
||||||
public function run(): void
|
|
||||||
{
|
|
||||||
app()[\Spatie\Permission\PermissionRegistrar::class]->forgetCachedPermissions();
|
|
||||||
|
|
||||||
$roles = ['super_admin', 'ketua', 'bendahara', 'pengurus', 'anggota', 'auditor'];
|
|
||||||
|
|
||||||
foreach ($roles as $role) {
|
|
||||||
Role::firstOrCreate(['name' => $role, 'guard_name' => 'web']);
|
|
||||||
}
|
|
||||||
|
|
||||||
// Generate Shield permissions untuk semua resource
|
|
||||||
\Artisan::call('shield:generate', ['--all' => true, '--panel' => 'admin']);
|
|
||||||
|
|
||||||
// super_admin mendapat semua permission via Shield config
|
|
||||||
$superAdmin = User::firstOrCreate(
|
|
||||||
['email' => 'admin@admin.com'],
|
|
||||||
[
|
|
||||||
'name' => 'Super Admin',
|
|
||||||
'password' => bcrypt('admin'),
|
|
||||||
'phone' => '08123456789',
|
|
||||||
'status' => 'aktif',
|
|
||||||
]
|
|
||||||
);
|
|
||||||
|
|
||||||
$superAdmin->assignRole('super_admin');
|
|
||||||
}
|
|
||||||
}
|
|
||||||
Reference in New Issue
Block a user