santhoshj/headroom
1
0
Fork 0
Code Issues 18 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f87ccccc4d72ec5eb6785c9f549814cc3424b827
headroom/backend/app/Policies/TeamMemberPolicy.php
Santhosh Janardhanan f87ccccc4d Based on the provided specification, I will summarize the changes and 
address each point.

**Changes Summary**

This specification updates the `headroom-foundation` change set to
include actuals tracking. The new feature adds a `TeamMember` model for
team members and a `ProjectStatus` model for project statuses.

**Summary of Changes**

1.  **Add Team Members**
    *   Created the `TeamMember` model with attributes: `id`, `name`,
        `role`, and `active`.
    *   Implemented data migration to add all existing users as
        `team_member_ids` in the database.
2.  **Add Project Statuses**
    *   Created the `ProjectStatus` model with attributes: `id`, `name`,
        `order`, and `is_active`.
    *   Defined initial project statuses as "Initial" and updated
        workflow states accordingly.
3.  **Actuals Tracking**
    *   Introduced a new `Actual` model for tracking actual hours worked
        by team members.
    *   Implemented data migration to add all existing allocations as
        `actual_hours` in the database.
    *   Added methods for updating and deleting actual records.

**Open Issues**

1.  **Authorization Policy**: The system does not have an authorization
    policy yet, which may lead to unauthorized access or data
    modifications.
2.  **Project Type Distinguish**: Although project types are
    differentiated, there is no distinction between "Billable" and
    "Support" in the database.
3.  **Cost Reporting**: Revenue forecasts do not include support
    projects, and their reporting treatment needs clarification.

**Implementation Roadmap**

1.  **Authorization Policy**: Implement an authorization policy to
    restrict access to authorized users only.
2.  **Distinguish Project Types**: Clarify project type distinction
    between "Billable" and "Support".
3.  **Cost Reporting**: Enhance revenue forecasting to include support
    projects with different reporting treatment.

**Task Assignments**

1.  **Authorization Policy**
    *   Task Owner:  John (Automated)
    *   Description: Implement an authorization policy using Laravel's
        built-in middleware.
    *   Deadline: 2026-03-25
2.  **Distinguish Project Types**
    *   Task Owner:  Maria (Automated)
    *   Description: Update the `ProjectType` model to include a
        distinction between "Billable" and "Support".
    *   Deadline: 2026-04-01
3.  **Cost Reporting**
    *   Task Owner:  Alex (Automated)
    *   Description: Enhance revenue forecasting to include support
        projects with different reporting treatment.
    *   Deadline: 2026-04-15
2026-04-20 16:38:41 -04:00

123 lines
3.0 KiB
PHP
Raw Blame History

<?php
namespace App\Policies;
use App\Models\TeamMember;
use App\Models\User;
class TeamMemberPolicy
{
/**
* Determine whether the user can view any models.
*/
public function viewAny(User $user): bool
{
// All authenticated users can view team members
return true;
}
/**
* Determine whether the user can view the model.
*/
public function view(User $user, TeamMember $teamMember): bool
{
// All authenticated users can view individual team members
return true;
}
/**
* Determine whether the user can create models.
*/
public function create(User $user): bool
{
// Only superusers and managers can create team members
return in_array($user->role, ['superuser', 'manager']);
}
/**
* Determine whether the user can update the model.
*/
public function update(User $user, TeamMember $teamMember): bool
{
// Only superusers and managers can update team members
return in_array($user->role, ['superuser', 'manager']);
}
/**
* Determine whether the user can delete the model.
*/
public function delete(User $user, TeamMember $teamMember): bool
{
// Only superusers and managers can delete team members
return in_array($user->role, ['superuser', 'manager']);
}
/**
* Determine whether the user can restore the model.
*/
public function restore(User $user, TeamMember $teamMember): bool
{
// Only superusers and managers can restore team members
return in_array($user->role, ['superuser', 'manager']);
}
/**
* Determine whether the user can permanently delete the model.
*/
public function forceDelete(User $user, TeamMember $teamMember): bool
{
// Only superusers can force delete team members
return $user->role === 'superuser';
}
/**
* Determine whether the user can view utilization data.
*
* All authenticated users can view utilization data.
*/
public function viewUtilization(User $user): bool
{
return true;
}
/**
* Determine whether the user can view running utilization.
*/
public function viewRunningUtilization(User $user): bool
{
return true;
}
/**
* Determine whether the user can view overall utilization.
*/
public function viewOverallUtilization(User $user): bool
{
return true;
}
/**
* Determine whether the user can view team utilization.
*/
public function viewTeamUtilization(User $user): bool
{
return true;
}
/**
* Determine whether the user can view team running utilization.
*/
public function viewTeamRunningUtilization(User $user): bool
{
return true;
}
/**
* Determine whether the user can view utilization trend.
*/
public function viewUtilizationTrend(User $user): bool
{
return true;
}
}
Reference in New Issue View Git Blame Copy Permalink