authorize news section

app/Http/Livewire/Backend/NewsTable.php

@@ -2,6 +2,7 @@
 
 namespace App\Http\Livewire\Backend;
 
+use Illuminate\Support\Facades\Gate;
 use App\Domains\News\Models\News;
 use Illuminate\Database\Eloquent\Builder;
 use Rappasoft\LaravelLivewireTables\DataTableComponent;
@@ -17,7 +18,7 @@ class NewsTable extends DataTableComponent
 
     public function columns(): array
     {
-        return [
+        $columns = [
             Column::make("Title", "title")
                 ->sortable()
                 ->searchable(), 
@@ -33,8 +34,13 @@ public function columns(): array
                 ->sortable(),
             Column::make("Updated At", "updated_at")
                 ->sortable(),
-            Column::make("Actions")
         ];
+
+        if (Gate::allows('edit-or-delete-news')) {
+            $columns[] = Column::make("Actions");
+        }
+
+        return $columns;
     }
 
     public function query(): Builder

app/Providers/AuthServiceProvider.php

@@ -38,5 +38,15 @@ public function boot()
 //        Gate::after(function ($user) {
 //            return $user->hasAllAccess();
 //        });
+
+        Gate::define('edit-or-delete-news', function ($user) {
+            // Logic to determine if the user can edit news
+            return $user->hasAnyPermission(['admin.access.news.edit','admin.access.news.delete']);
+        });
+
+        Gate::define('edit-or-delete-events', function ($user) {
+            // Logic to determine if the user can edit news
+            return $user->hasAnyPermission(['admin.access.events.edit','admin.access.events.delete']);
+        });
     }
 }

resources/views/backend/includes/sidebar.blade.php

@@ -84,7 +84,7 @@ class="c-sidebar-nav-dropdown {{ activeClass(Route::is('admin.auth.user.*') || R
             </li>
         @endif
 
-        @if ($logged_in_user->hasPermissionTo('admin.access.news.edit'))
+        @if ($logged_in_user->hasAnyPermission(['admin.access.news.create', 'admin.access.news.edit', 'admin.access.news.show', 'admin.access.news.delete']))
             {{-- News --}}
             <li class="c-sidebar-nav-dropdown">
                 <x-utils.link href="#" icon="c-sidebar-nav-icon cil-newspaper" class="c-sidebar-nav-dropdown-toggle"
@@ -99,7 +99,7 @@ class="c-sidebar-nav-dropdown {{ activeClass(Route::is('admin.auth.user.*') || R
             </li>
         @endif
 
-        @if ($logged_in_user->hasPermissionTo('admin.access.events.edit'))
+        @if ($logged_in_user->hasAnyPermission(['admin.access.events.create', 'admin.access.events.edit', 'admin.access.events.show', 'admin.access.events.delete']))
             {{-- Events --}}
             <li class="c-sidebar-nav-dropdown">
                 <x-utils.link href="#" icon="c-sidebar-nav-icon cil-browser" class="c-sidebar-nav-dropdown-toggle"

resources/views/backend/news/index-table-row.blade.php

@@ -53,12 +53,16 @@
 <x-livewire-tables::table.cell>
     <div class="d-flex px-0 mt-0 mb-0">
         <div class="btn-group" role="group" aria-label="">
+            @if ($logged_in_user->hasPermissionTo('admin.access.news.edit'))
             <a href="{{ route('dashboard.news.edit', $row) }}" class="btn btn-info btn-xs"><i class="fa fa-pencil"
                     title="Edit"></i>
             </a>
+            @endif
+            @if ($logged_in_user->hasPermissionTo('admin.access.news.delete'))
             <a href="{{ route('dashboard.news.delete', $row) }}" class="btn btn-danger btn-xs"><i
                     class="fa fa-trash" title="Delete"></i>
             </a>
+            @endif
         </div>
     </div>
 </x-livewire-tables::table.cell>

routes/backend/news.php

@@ -4,18 +4,20 @@
 use App\Http\Controllers\Backend\NewsController;
 use Illuminate\Support\Facades\Route;
 
-Route::group(['middleware' => ['permission:admin.access.news.edit']], function () {
+Route::group(['middleware' => ['permission:admin.access.news.show|admin.access.news.create|admin.access.news.edit|admin.access.news.delete']], function () {
 
     Route::get('/news', function () {
         return view('backend.news.index');
-    })->name('news.index')
+    })->middleware('permission:admin.access.news.show')
+    ->name('news.index')
         ->breadcrumbs(function (Trail $trail) {
             $trail->push(__('Home'), route('dashboard.home'))
                 ->push(__('News'), route('dashboard.news.index'));
         });
 
     // Create
     Route::get('news/create', [NewsController::class, 'create'])
+        ->middleware('permission:admin.access.news.create')
         ->name('news.create')
         ->breadcrumbs(function (Trail $trail) {
             $trail->push(__('Home'), route('dashboard.home'))
@@ -25,10 +27,12 @@
 
     // Store
     Route::post('news/', [NewsController::class, 'store'])
+        ->middleware('permission:admin.access.news.create')
         ->name('news.store');
 
     // Edit
     Route::get('news/edit/{news}', [NewsController::class, 'edit'])
+        ->middleware('permission:admin.access.news.edit')
         ->name('news.edit')
         ->breadcrumbs(function (Trail $trail) {
             $trail->push(__('Home'), route('dashboard.home'))
@@ -38,10 +42,12 @@
 
     // Update
     Route::put('news/{news}', [NewsController::class, 'update'])
+        ->middleware('permission:admin.access.news.edit')
         ->name('news.update');
 
     // Delete
     Route::get('news/delete/{news}', [NewsController::class, 'delete'])
+        ->middleware('permission:admin.access.news.delete')
         ->name('news.delete')
         ->breadcrumbs(function (Trail $trail) {
             $trail->push(__('Home'), route('dashboard.home'))
@@ -51,5 +57,6 @@
 
     // Destroy
     Route::delete('news/{news}', [NewsController::class, 'destroy'])
+        ->middleware('permission:admin.access.news.delete')
         ->name('news.destroy');
 });