Skip to content

Commit bcd2f81

Browse files
committed
remove api.mangement
1 parent 4dd9d43 commit bcd2f81

7 files changed

Lines changed: 12 additions & 71 deletions

File tree

database/migrations/2026_04_10_120000_add_api_management_permission.php

Lines changed: 0 additions & 36 deletions
This file was deleted.

database/seeders/RolesSeeder.php

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,9 +36,8 @@ public function run(): void
3636
{
3737
if (Role::query()->count() === 0) {
3838
$apiAccess = Permission::findOrCreate('api.access');
39-
$apiManagement = Permission::findOrCreate('api.management');
4039

41-
Role::findOrCreate('admin')->givePermissionTo([$apiAccess, $apiManagement]);
40+
Role::findOrCreate('admin')->givePermissionTo($apiAccess);
4241
Role::findOrCreate('global-read')->givePermissionTo($apiAccess);
4342
Role::findOrCreate('user');
4443
}

includes/html/forms/v1-token-item-create.inc.php

Lines changed: 1 addition & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -12,16 +12,7 @@
1212
exit(json_encode(['status' => 'error', 'message' => 'ERROR: Token name is required']));
1313
}
1414

15-
$canManage = Gate::allows('api.management');
16-
17-
if ($canManage && ! empty($_POST['user_id'])) {
18-
$user = \App\Models\User::find($_POST['user_id']);
19-
if (! $user) {
20-
exit(json_encode(['status' => 'error', 'message' => 'ERROR: User not found']));
21-
}
22-
} else {
23-
$user = Auth::user();
24-
}
15+
$user = Auth::user();
2516

2617
$expiresAt = null;
2718
$expiresIn = trim($_POST['expires_in'] ?? '');

includes/html/forms/v1-token-item-remove.inc.php

Lines changed: 4 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -12,16 +12,10 @@
1212
exit(json_encode(['status' => 'error', 'message' => 'ERROR: Invalid data']));
1313
}
1414

15-
$canManage = Gate::allows('api.management');
16-
17-
$query = \Laravel\Sanctum\PersonalAccessToken::where('id', $tokenId);
18-
19-
if (! $canManage) {
20-
$query->where('tokenable_id', Auth::id())
21-
->where('tokenable_type', \App\Models\User::class);
22-
}
23-
24-
$token = $query->first();
15+
$token = \Laravel\Sanctum\PersonalAccessToken::where('id', $tokenId)
16+
->where('tokenable_id', Auth::id())
17+
->where('tokenable_type', \App\Models\User::class)
18+
->first();
2519

2620
if (! $token) {
2721
exit(json_encode(['status' => 'error', 'message' => 'ERROR: Token not found']));

includes/html/forms/v1-token-item-renew.inc.php

Lines changed: 4 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -17,16 +17,10 @@
1717
exit(json_encode(['status' => 'error', 'message' => 'ERROR: Days must be a positive number']));
1818
}
1919

20-
$canManage = Gate::allows('api.management');
21-
22-
$query = \Laravel\Sanctum\PersonalAccessToken::where('id', $tokenId);
23-
24-
if (! $canManage) {
25-
$query->where('tokenable_id', Auth::id())
26-
->where('tokenable_type', \App\Models\User::class);
27-
}
28-
29-
$token = $query->first();
20+
$token = \Laravel\Sanctum\PersonalAccessToken::where('id', $tokenId)
21+
->where('tokenable_id', Auth::id())
22+
->where('tokenable_type', \App\Models\User::class)
23+
->first();
3024

3125
if (! $token) {
3226
exit(json_encode(['status' => 'error', 'message' => 'ERROR: Token not found']));

resources/definitions/permissions.yaml

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,6 @@ groups:
3333

3434
api:
3535
- api.access
36-
- api.management
3736

3837
application:
3938
- application.update

resources/views/layouts/menu.blade.php

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -685,7 +685,7 @@ class="badge count-notif">{{ $notification_count }}</span> {{ __('Notifications'
685685
</ul>
686686
</li>
687687
@endif
688-
@canany(['api.access', 'api.management'])
688+
@can('api.access')
689689
<li role="presentation" class="divider"></li>
690690
<li class="dropdown-submenu">
691691
<a href="#"><i class="fa fa-code fa-fw fa-lg" aria-hidden="true"></i> {{ __('API') }}</a>
@@ -698,7 +698,7 @@ class="fa fa-book fa-fw fa-lg" aria-hidden="true"></i> {{ __('API Docs') }}</a>
698698
</li>
699699
</ul>
700700
</li>
701-
@endcanany
701+
@endcan
702702
<li role="presentation" class="divider"></li>
703703
<li class="dropdown-submenu" id="countdown_timer_menu" style="display: none">
704704
<a href="#"><i class="fa fa-clock-o fa-fw fa-lg"></i> <span id="countdown_timer"></span></a>

0 commit comments

Comments
 (0)