diff --git a/app/Http/Requests/Project/CreateProjectRequest.php b/app/Http/Requests/Project/CreateProjectRequest.php index 3d3b29506c9c..e9f9f193f750 100644 --- a/app/Http/Requests/Project/CreateProjectRequest.php +++ b/app/Http/Requests/Project/CreateProjectRequest.php @@ -11,6 +11,7 @@ namespace App\Http\Requests\Project; +use App\Models\Project; use App\Http\Requests\Request; class CreateProjectRequest extends Request @@ -22,6 +23,7 @@ class CreateProjectRequest extends Request */ public function authorize() : bool { - return auth()->user()->isAdmin(); + return auth()->user()->can('create', Project::class); + } } diff --git a/app/Http/Requests/Project/DestroyProjectRequest.php b/app/Http/Requests/Project/DestroyProjectRequest.php index 4c50902015cd..368f779f8a1b 100644 --- a/app/Http/Requests/Project/DestroyProjectRequest.php +++ b/app/Http/Requests/Project/DestroyProjectRequest.php @@ -22,6 +22,6 @@ class DestroyProjectRequest extends Request */ public function authorize() : bool { - return auth()->user()->isAdmin(); + return auth()->user()->can('edit', $this->project); } } diff --git a/app/Http/Requests/Project/EditProjectRequest.php b/app/Http/Requests/Project/EditProjectRequest.php index 04bf95304d3e..5c785163a2a3 100644 --- a/app/Http/Requests/Project/EditProjectRequest.php +++ b/app/Http/Requests/Project/EditProjectRequest.php @@ -22,7 +22,7 @@ class EditProjectRequest extends Request */ public function authorize() : bool { - return auth()->user()->isAdmin(); + return auth()->user()->can('edit', $this->project); } /** diff --git a/app/Http/Requests/Project/ShowProjectRequest.php b/app/Http/Requests/Project/ShowProjectRequest.php index 140c7fb1919f..6e6b4ba98a84 100644 --- a/app/Http/Requests/Project/ShowProjectRequest.php +++ b/app/Http/Requests/Project/ShowProjectRequest.php @@ -22,7 +22,9 @@ class ShowProjectRequest extends Request */ public function authorize() : bool { - return auth()->user()->isAdmin(); + // return auth()->user()->isAdmin(); + return auth()->user()->can('view', $this->project); + } /**