Updated Super Admin Modification Constraints

rayusamBoy · Jun 20, 2020 · c71ed5b · c71ed5b
1 parent bfee6bf
commit c71ed5b
Show file tree

Hide file tree

Showing 2 changed files with 17 additions and 0 deletions.
diff --git a/app/Helpers/Qs.php b/app/Helpers/Qs.php
@@ -181,6 +181,12 @@ public static function getStaff($remove=[])
         return $remove ? array_values(array_diff($data, $remove)) : $data;
     }
 
+    // Check if User is Head of Super Admins (Untouchable)
+    public static function headSA(int $user_id)
+    {
+        return $user_id === 1;
+    }
+
     public static function userIsPTA()
     {
         return in_array(Auth::user()->user_type, self::getPTA());

diff --git a/app/Http/Controllers/SupportTeam/UserController.php b/app/Http/Controllers/SupportTeam/UserController.php
@@ -106,6 +106,12 @@ public function store(UserRequest $req)
     public function update(UserRequest $req, $id)
     {
         $id = Qs::decodeHash($id);
+
+        // Redirect if Making Changes to Head of Super Admins
+        if(Qs::headSA($id)){
+            return Qs::json(__('msg.denied'), FALSE);
+        }
+
         $user = $this->user->find($id);
 
         $user_type = $user->user_type;
@@ -161,6 +167,11 @@ public function destroy($id)
     {
         $id = Qs::decodeHash($id);
 
+        // Redirect if Making Changes to Head of Super Admins
+        if(Qs::headSA($id)){
+            return Qs::json(__('msg.denied'), FALSE);
+        }
+
         $user = $this->user->find($id);
 
         if($user->user_type == 'teacher' && $this->userTeachesSubject($user)) {