feat(logs): optimalkan middleware dan seeder izin log

- Memperbarui `AuditLogsController`: - Menambahkan middleware `auth` untuk melindungi akses kontrol. - Menggunakan closure pada middleware untuk menetapkan properti `$user` setelah otentikasi berhasil. - Memperbarui `SystemLogsController`: - Menambahkan middleware `auth` untuk melindungi akses kontrol sistem log. - Menggunakan closure pada middleware untuk menetapkan properti `$user` setelah otentikasi berhasil. - Memperbarui `PermissionSeeder`: - Menghapus logika pembuatan izin `crudActions` agar kode lebih sederhana dan efisien. - Menghapus metode `crudActions` untuk tindakan CRUD spesifik. - Menyederhanakan pembuatan grup izin hanya menggunakan daftar utama (`audit-logs`, `system-logs`).
feat(logs): tambahkan validasi akses pengguna dan seeder izin untuk Audit dan System Logs
2025-06-22 20:54:51 +07:00 · 2025-06-22 18:59:13 +07:00 · 2025-04-27 10:50:32 +07:00
6 changed files with 82 additions and 32 deletions
--- a/app/Http/Controllers/AuditLogsController.php
+++ b/app/Http/Controllers/AuditLogsController.php
@@ -6,19 +6,44 @@
    use Illuminate\Http\Request;
    use Modules\Usermanagement\Models\User;
    use Spatie\Activitylog\Models\Activity;
+    use Illuminate\Support\Facades\Auth;

    class AuditLogsController extends Controller
    {
+        protected $user;
+
+        public function __construct()
+        {
+            // Mengatur middleware auth
+            $this->middleware('auth');
+
+            // Mengatur user setelah middleware auth dijalankan
+            $this->middleware(function ($request, $next) {
+                $this->user = Auth::user();
+                return $next($request);
+            });
+        }
+
        /**
         * Display a listing of the resource.
         */
        public function index()
        {
+            // Check if the authenticated user has the required permission to view audit logs
+            if (is_null($this->user) || !$this->user->can('audit-logs.read')) {
+                abort(403, 'Sorry! You are not allowed to view audit logs.');
+            }
+
            return view('logs::audit');
        }

        public function datatable(Request $request)
        {
+            // Check if the authenticated user has the required permission to view audit logs
+            if (is_null($this->user) || !$this->user->can('audit-logs.read')) {
+                abort(403, 'Sorry! You are not allowed to view audit logs.');
+            }
+
            // Retrieve data from the database
            $query = Activity::query();

@@ -97,6 +122,5 @@
                'totalCount'      => $filteredRecords,
                'data'            => $data,
            ]);
-
        }
    }
--- a/app/Http/Controllers/SystemLogsController.php
+++ b/app/Http/Controllers/SystemLogsController.php
@@ -6,14 +6,24 @@ use App\Http\Controllers\Controller;
 use Illuminate\Http\Request;
 use Jackiedo\LogReader\Exceptions\UnableToRetrieveLogFilesException;
 use Jackiedo\LogReader\LogReader;
+use Illuminate\Support\Facades\Auth;

 class SystemLogsController extends Controller
 {
    protected $reader;
+    protected $user;

    public function __construct(LogReader $reader)
    {
        $this->reader = $reader;
+        // Mengatur middleware auth
+        $this->middleware('auth');
+
+        // Mengatur user setelah middleware auth dijalankan
+        $this->middleware(function ($request, $next) {
+            $this->user = Auth::user();
+            return $next($request);
+        });
    }

    /**
@@ -21,10 +31,20 @@ class SystemLogsController extends Controller
     */
    public function index()
    {
+        // Check if the authenticated user has the required permission to view system logs
+        if (is_null($this->user) || !$this->user->can('system-logs.read')) {
+            abort(403, 'Sorry! You are not allowed to view system logs.');
+        }
+
        return view('logs::system');
    }

    public function datatable(Request $request){
+        // Check if the authenticated user has the required permission to view system logs
+        if (is_null($this->user) || !$this->user->can('system-logs.read')) {
+            abort(403, 'Sorry! You are not allowed to view system logs.');
+        }
+
        $data = collect();
        $this->reader->setLogPath(storage_path('logs'));
        try {
--- a/database/seeders/LogsDatabaseSeeder.php
+++ b/database/seeders/LogsDatabaseSeeder.php
@@ -11,6 +11,8 @@ class LogsDatabaseSeeder extends Seeder
     */
    public function run(): void
    {
-        // $this->call([]);
+        $this->call([
+            PermissionSeeder::class
+        ]);
    }
 }
--- a/database/seeders/PermissionSeeder.php
+++ b/database/seeders/PermissionSeeder.php
@@ -0,0 +1,33 @@
+<?php
+
+    namespace Modules\Logs\Database\Seeders;
+
+    use Illuminate\Database\Seeder;
+    use Illuminate\Support\Str;
+    use Modules\Usermanagement\Models\PermissionGroup;
+
+    class PermissionSeeder extends Seeder
+    {
+        /**
+         * Run the database seeds.
+         */
+        public function run()
+        {
+            $data = $this->data();
+
+            foreach ($data as $value) {
+                PermissionGroup::updateOrCreate([
+                    'name'       => $value['name'],
+                    'slug'       => Str::slug($value['name'])
+                ]);
+            }
+        }
+
+        public function data()
+        {
+            return [
+                ['name' => 'system-logs'],
+                ['name' => 'audit-logs'],
+            ];
+        }
+    }
--- a/module.json
+++ b/module.json
@@ -26,7 +26,7 @@
                "sub": [
                    {
                        "title": "System Logs",
-                        "path": "",
+                        "path": "logs.system",
                        "classes": "",
                        "attributes": [],
                        "permission": "",
--- a/resources/views/layouts/master.blade.php
+++ b/resources/views/layouts/master.blade.php
@@ -1,29 +0,0 @@
-<!DOCTYPE html>
-<html lang="{{ str_replace('_', '-', app()->getLocale()) }}">
-
-<head>
-    <meta charset="utf-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1">
-    <meta name="csrf-token" content="{{ csrf_token() }}">
-    <meta http-equiv="X-UA-Compatible" content="IE=edge">
-
-    <title>Logs Module - {{ config('app.name', 'Laravel') }}</title>
-
-    <meta name="description" content="{{ $description ?? '' }}">
-    <meta name="keywords" content="{{ $keywords ?? '' }}">
-    <meta name="author" content="{{ $author ?? '' }}">
-
-    <!-- Fonts -->
-    <link rel="preconnect" href="https://fonts.bunny.net">
-    <link href="https://fonts.bunny.net/css?family=figtree:400,500,600&display=swap" rel="stylesheet" />
-
-    {{-- Vite CSS --}}
-    {{-- {{ module_vite('build-logs', 'resources/assets/sass/app.scss') }} --}}
-</head>
-
-<body>
-    @yield('content')
-
-    {{-- Vite JS --}}
-    {{-- {{ module_vite('build-logs', 'resources/assets/js/app.js') }} --}}
-</body>