dyzulk/trustlab-api
1
0
Fork 0
mirror of https://github.com/dyzulk/trustlab-api.git synced 2026-01-26 13:22:05 +07:00
Code Issues Packages Projects Releases Wiki Activity

fix: allow owner role to access all admin api endpoints and see stats

Browse Source
This commit is contained in:
dyzulk
2025-12-30 20:29:35 +07:00
parent a14d788400
commit 1eabedcb5b
6 changed files with 34 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
app/Models/User.php
View File

@@ -103,7 +103,7 @@ class User extends Authenticatable implements MustVerifyEmail
*/
public function isOwner(): bool
{
return $this->role === self::ROLE_OWNER;
return strtolower($this->role) === self::ROLE_OWNER;
}
/**
@@ -111,7 +111,7 @@ class User extends Authenticatable implements MustVerifyEmail
*/
public function isAdmin(): bool
{
return $this->role === self::ROLE_ADMIN;
return strtolower($this->role) === self::ROLE_ADMIN;
}
/**
@@ -119,7 +119,8 @@ class User extends Authenticatable implements MustVerifyEmail
*/
public function isAdminOrOwner(): bool
{
return in_array($this->role, [self::ROLE_OWNER, self::ROLE_ADMIN]);
$role = strtolower($this->role);
return in_array($role, [self::ROLE_OWNER, self::ROLE_ADMIN]);
}
/**