32 lines
739 B
PHP
32 lines
739 B
PHP
<?php
|
|
|
|
namespace App\Http\Requests\Member\Transaction;
|
|
|
|
use Illuminate\Foundation\Http\FormRequest;
|
|
|
|
class DetailRequest extends FormRequest
|
|
{
|
|
/**
|
|
* Determine if the user is authorized to make this request.
|
|
*
|
|
* @return bool
|
|
*/
|
|
public function authorize()
|
|
{
|
|
$transaction = $this->transaction;
|
|
$user = auth()->user();
|
|
$isAdmin = auth()->user()->role->permissions->contains(function($value){
|
|
return $value->code == "transaction.online";
|
|
});
|
|
$isOwner = (@$transaction->customer->user->id == @$user->id);
|
|
return $isAdmin || $isOwner;
|
|
}
|
|
|
|
public function rules()
|
|
{
|
|
return [
|
|
'note' => 'nullable|string',
|
|
];
|
|
}
|
|
}
|