feat: incomes and expenses acl between panels (#31)

chinmaypurav · web-flow · commit 10a3e3349ab6 · 2025-02-02T00:48:51.000+05:30
* incomes acl added

* expense acl added
diff --git a/app/Filament/Concerns/IncomeExpenseResourceTrait.php b/app/Filament/Concerns/IncomeExpenseResourceTrait.php
@@ -12,7 +12,6 @@
 use Filament\Forms\Form;
 use Filament\Tables\Actions\BulkActionGroup;
 use Filament\Tables\Actions\DeleteAction;
-use Filament\Tables\Actions\DeleteBulkAction;
 use Filament\Tables\Actions\EditAction;
 use Filament\Tables\Columns\TextColumn;
 use Filament\Tables\Enums\FiltersLayout;
@@ -27,6 +26,8 @@
  */
 trait IncomeExpenseResourceTrait
 {
+    use BulkDeleter, UserFilterable;
+
     public static function form(Form $form): Form
     {
         return $form
@@ -81,6 +82,7 @@ public static function table(Table $table): Table
     {
         return $table
             ->columns([
+                self::getUserColumn(),
 
                 TextColumn::make('person.name'),
 
@@ -103,6 +105,8 @@ public static function table(Table $table): Table
                     ->sortable(),
             ])
             ->filters([
+                self::getUserFilter(),
+
                 Filter::make('transacted_at')
                     ->form([
                         DatePicker::make('transacted_from')->default(now()->startOfMonth()),
@@ -141,7 +145,7 @@ public static function table(Table $table): Table
             ])
             ->bulkActions([
                 BulkActionGroup::make([
-                    DeleteBulkAction::make(),
+                    self::deleteBulkAction(),
                 ]),
             ]);
     }
diff --git a/app/Filament/Resources/ExpenseResource/Pages/ListExpenses.php b/app/Filament/Resources/ExpenseResource/Pages/ListExpenses.php
@@ -2,29 +2,27 @@
 
 namespace App\Filament\Resources\ExpenseResource\Pages;
 
+use App\Filament\Concerns\UserFilterable;
 use App\Filament\Imports\ExpenseImporter;
 use App\Filament\Resources\ExpenseResource;
+use App\Models\Expense;
 use Filament\Actions\CreateAction;
 use Filament\Actions\ImportAction;
 use Filament\Resources\Pages\ListRecords;
-use Illuminate\Database\Eloquent\Builder;
 
 class ListExpenses extends ListRecords
 {
+    use UserFilterable;
+
     protected static string $resource = ExpenseResource::class;
 
     protected function getHeaderActions(): array
     {
         return [
             CreateAction::make(),
             ImportAction::make()
-                ->importer(ExpenseImporter::class),
+                ->importer(ExpenseImporter::class)
+                ->visible(auth()->user()->can('import', Expense::class)),
         ];
     }
-
-    public function filterTableQuery(Builder $query): Builder
-    {
-        return parent::filterTableQuery($query)
-            ->where('user_id', auth()->id());
-    }
 }
diff --git a/app/Filament/Resources/IncomeResource/Pages/ListIncomes.php b/app/Filament/Resources/IncomeResource/Pages/ListIncomes.php
@@ -2,29 +2,27 @@
 
 namespace App\Filament\Resources\IncomeResource\Pages;
 
+use App\Filament\Concerns\UserFilterable;
 use App\Filament\Imports\IncomeImporter;
 use App\Filament\Resources\IncomeResource;
+use App\Models\Income;
 use Filament\Actions\CreateAction;
 use Filament\Actions\ImportAction;
 use Filament\Resources\Pages\ListRecords;
-use Illuminate\Database\Eloquent\Builder;
 
 class ListIncomes extends ListRecords
 {
+    use UserFilterable;
+
     protected static string $resource = IncomeResource::class;
 
     protected function getHeaderActions(): array
     {
         return [
             CreateAction::make(),
             ImportAction::make()
-                ->importer(IncomeImporter::class),
+                ->importer(IncomeImporter::class)
+                ->visible(auth()->user()->can('import', Income::class)),
         ];
     }
-
-    public function filterTableQuery(Builder $query): Builder
-    {
-        return parent::filterTableQuery($query)
-            ->where('user_id', auth()->id());
-    }
 }
diff --git a/app/Policies/ExpensePolicy.php b/app/Policies/ExpensePolicy.php
@@ -2,6 +2,7 @@
 
 namespace App\Policies;
 
+use App\Enums\PanelId;
 use App\Models\Expense;
 use App\Models\User;
 use Illuminate\Auth\Access\HandlesAuthorization;
@@ -17,16 +18,29 @@ public function viewAny(User $user): bool
 
     public function create(User $user): bool
     {
-        return true;
+        return PanelId::APP->isCurrentPanel();
     }
 
     public function update(User $user, Expense $expense): bool
     {
+        if (PanelId::FAMILY->isCurrentPanel()) {
+            return false;
+        }
+
         return $user->id === $expense->user_id;
     }
 
     public function delete(User $user, Expense $expense): bool
     {
+        if (PanelId::FAMILY->isCurrentPanel()) {
+            return false;
+        }
+
         return $user->id === $expense->user_id;
     }
+
+    public function import(User $user): bool
+    {
+        return PanelId::APP->isCurrentPanel();
+    }
 }
diff --git a/app/Policies/IncomePolicy.php b/app/Policies/IncomePolicy.php
@@ -2,6 +2,7 @@
 
 namespace App\Policies;
 
+use App\Enums\PanelId;
 use App\Models\Income;
 use App\Models\User;
 use Illuminate\Auth\Access\HandlesAuthorization;
@@ -17,16 +18,29 @@ public function viewAny(User $user): bool
 
     public function create(User $user): bool
     {
-        return true;
+        return PanelId::APP->isCurrentPanel();
     }
 
     public function update(User $user, Income $income): bool
     {
+        if (PanelId::FAMILY->isCurrentPanel()) {
+            return false;
+        }
+
         return $user->id === $income->user_id;
     }
 
     public function delete(User $user, Income $income): bool
     {
+        if (PanelId::FAMILY->isCurrentPanel()) {
+            return false;
+        }
+
         return $user->id === $income->user_id;
     }
+
+    public function import(User $user): bool
+    {
+        return PanelId::APP->isCurrentPanel();
+    }
 }
diff --git a/tests/Feature/Expense/ExpenseFamilyViewTest.php b/tests/Feature/Expense/ExpenseFamilyViewTest.php
@@ -0,0 +1,68 @@
+<?php
+
+use App\Enums\PanelId;
+use App\Filament\Resources\ExpenseResource;
+use App\Filament\Resources\ExpenseResource\Pages\ListExpenses;
+use App\Models\Expense;
+use App\Models\User;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+
+use function Pest\Livewire\livewire;
+
+uses(RefreshDatabase::class);
+
+beforeEach(function () {
+    $this->user = User::factory()->create();
+    $this->actingAs($this->user);
+
+    $this->expense = Expense::factory()->for($this->user)->today()->create([
+        'description' => 'User 1 Expense',
+    ]);
+
+    PanelId::FAMILY->setCurrentPanel();
+});
+
+it('cannot display create action', function () {
+    livewire(ListExpenses::class)
+        ->assertActionHidden('create');
+});
+
+it('cannot display edit action', function () {
+    livewire(ListExpenses::class)
+        ->assertTableActionHidden('edit', $this->expense->id);
+});
+
+it('cannot display delete action', function () {
+    livewire(ListExpenses::class)
+        ->assertTableActionHidden('delete', $this->expense->id);
+});
+
+it('cannot display import action', function () {
+    livewire(ListExpenses::class)
+        ->assertTableActionHidden('delete', $this->expense->id);
+});
+
+it('cannot display bulk delete action', function () {
+    livewire(ListExpenses::class)
+        ->set('selectedTableRecords', [$this->expense])
+        ->assertTableBulkActionHidden('delete');
+});
+
+it('cannot render create expense page', function () {
+    $this->get(ExpenseResource::getUrl('create'))
+        ->assertForbidden();
+});
+
+it('cannot perform expense update action', function () {
+    livewire(ExpenseResource\Pages\EditExpense::class, [
+        'record' => $this->expense->getRouteKey(),
+    ])
+        ->assertForbidden();
+});
+
+it('cannot perform delete expense action', function () {
+    livewire(ExpenseResource\Pages\EditExpense::class, [
+        'record' => $this->expense->getRouteKey(),
+    ])
+        ->assertForbidden();
+});
diff --git a/tests/Feature/Expense/ExpenseFamilyViewUserFilterTest.php b/tests/Feature/Expense/ExpenseFamilyViewUserFilterTest.php
@@ -0,0 +1,42 @@
+<?php
+
+use App\Enums\PanelId;
+use App\Filament\Resources\ExpenseResource\Pages\ListExpenses;
+use App\Models\Expense;
+use App\Models\User;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+
+use function Pest\Livewire\livewire;
+
+uses(RefreshDatabase::class);
+
+beforeEach(function () {
+    $this->user = User::factory()->create();
+    $this->actingAs($this->user);
+
+    $this->expense1 = Expense::factory()->for($this->user)->today()->create([
+        'description' => 'User 1 Expense',
+    ]);
+
+    $this->expense2 = Expense::factory()->for(User::factory())->today()->create([
+        'description' => 'User 2 Expense',
+    ]);
+
+    PanelId::FAMILY->setCurrentPanel();
+});
+
+it('can display user filter', function () {
+    livewire(ListExpenses::class)
+        ->assertTableFilterVisible('user');
+});
+
+it('can display user columns', function () {
+    livewire(ListExpenses::class)
+        ->assertTableColumnVisible('user.name');
+});
+
+it('display user columns', function () {
+    livewire(ListExpenses::class)
+        ->assertSee([$this->expense1->description])
+        ->assertSee([$this->expense2->description]);
+});
diff --git a/tests/Feature/Expense/ExpenseIndividualViewTest.php b/tests/Feature/Expense/ExpenseIndividualViewTest.php
@@ -0,0 +1,48 @@
+<?php
+
+use App\Enums\PanelId;
+use App\Filament\Resources\ExpenseResource\Pages\ListExpenses;
+use App\Models\Expense;
+use App\Models\User;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+
+use function Pest\Livewire\livewire;
+
+uses(RefreshDatabase::class);
+
+beforeEach(function () {
+    $this->user = User::factory()->create();
+    $this->actingAs($this->user);
+
+    $this->expense = Expense::factory()->for($this->user)->today()->create([
+        'description' => 'User 1 Expense',
+    ]);
+
+    PanelId::APP->setCurrentPanel();
+});
+
+it('can display create action', function () {
+    livewire(ListExpenses::class)
+        ->assertActionVisible('create');
+});
+
+it('can display edit action', function () {
+    livewire(ListExpenses::class)
+        ->assertTableActionVisible('edit', $this->expense->id);
+});
+
+it('can display delete action', function () {
+    livewire(ListExpenses::class)
+        ->assertTableActionVisible('delete', $this->expense->id);
+});
+
+it('can display import action', function () {
+    livewire(ListExpenses::class)
+        ->assertActionVisible('import');
+});
+
+it('can display bulk delete action', function () {
+    livewire(ListExpenses::class)
+        ->set('selectedTableRecords', [$this->expense])
+        ->assertTableBulkActionVisible('delete');
+});
diff --git a/tests/Feature/Expense/ExpenseIndividualViewUserFilterTest.php b/tests/Feature/Expense/ExpenseIndividualViewUserFilterTest.php
@@ -0,0 +1,42 @@
+<?php
+
+use App\Enums\PanelId;
+use App\Filament\Resources\ExpenseResource\Pages\ListExpenses;
+use App\Models\Expense;
+use App\Models\User;
+use Illuminate\Foundation\Testing\RefreshDatabase;
+
+use function Pest\Livewire\livewire;
+
+uses(RefreshDatabase::class);
+
+beforeEach(function () {
+    $this->user = User::factory()->create();
+    $this->actingAs($this->user);
+
+    $this->expense1 = Expense::factory()->for($this->user)->today()->create([
+        'description' => 'User 1 Expense',
+    ]);
+
+    $this->expense2 = Expense::factory(User::factory())->today()->create([
+        'description' => 'User 2 Expense',
+    ]);
+
+    PanelId::APP->setCurrentPanel();
+});
+
+it('cannot display user filter', function () {
+    livewire(ListExpenses::class)
+        ->assertTableFilterHidden('user');
+});
+
+it('cannot display user columns', function () {
+    livewire(ListExpenses::class)
+        ->assertTableColumnHidden('user.name');
+});
+
+it('can only list auth user expenses', function () {
+    livewire(ListExpenses::class)
+        ->assertSee([$this->expense1->description])
+        ->assertDontSee([$this->expense2->description]);
+});
diff --git a/tests/Feature/Income/IncomeFamilyViewTest.php b/tests/Feature/Income/IncomeFamilyViewTest.php
diff --git a/tests/Feature/Income/IncomeFamilyViewUserFilterTest.php b/tests/Feature/Income/IncomeFamilyViewUserFilterTest.php
diff --git a/tests/Feature/Income/IncomeIndividualViewTest.php b/tests/Feature/Income/IncomeIndividualViewTest.php
diff --git a/tests/Feature/Income/IncomeIndividualViewUserFilterTest.php b/tests/Feature/Income/IncomeIndividualViewUserFilterTest.php

Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@`
`2`	`2`
`3`	`3`	`namespace App\Policies;`
`4`	`4`
	`5`	`+use App\Enums\PanelId;`
`5`	`6`	`use App\Models\Expense;`
`6`	`7`	`use App\Models\User;`
`7`	`8`	`use Illuminate\Auth\Access\HandlesAuthorization;`
`@@ -17,16 +18,29 @@ public function viewAny(User $user): bool`
`17`	`18`
`18`	`19`	`public function create(User $user): bool`
`19`	`20`	`{`
`20`		`- return true;`
	`21`	`+ return PanelId::APP->isCurrentPanel();`
`21`	`22`	`}`
`22`	`23`
`23`	`24`	`public function update(User $user, Expense $expense): bool`
`24`	`25`	`{`
	`26`	`+ if (PanelId::FAMILY->isCurrentPanel()) {`
	`27`	`+ return false;`
	`28`	`+ }`
	`29`	`+`
`25`	`30`	`return $user->id === $expense->user_id;`
`26`	`31`	`}`
`27`	`32`
`28`	`33`	`public function delete(User $user, Expense $expense): bool`
`29`	`34`	`{`
	`35`	`+ if (PanelId::FAMILY->isCurrentPanel()) {`
	`36`	`+ return false;`
	`37`	`+ }`
	`38`	`+`
`30`	`39`	`return $user->id === $expense->user_id;`
`31`	`40`	`}`
	`41`	`+`
	`42`	`+ public function import(User $user): bool`
	`43`	`+ {`
	`44`	`+ return PanelId::APP->isCurrentPanel();`
	`45`	`+ }`
`32`	`46`	`}`