Controller routes

app/Http/Controllers/AssignmentController.php

@@ -0,0 +1,50 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Http\Request;
+
+class AssignmentController extends Controller
+{
+    /**
+     * Display a listing of the resource.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function index()
+    {
+        //
+    }
+
+
+    public function create(Request $request){
+        if(Assignment::create($request->validated())){
+            return redirect()->route('assignment.index')->with('success', 'Assignment is successfully created');
+        }
+        return redirect()->route('assignment.index')->with('error', 'Failed to create assignment');
+    }
+
+
+    public function show(Assignment $assignment)
+    {
+        return redirect()->route('assignment.index');
+    }
+
+
+
+    public function update(Request $request,Assignment $assignment){
+
+        if($assigment->update($request->validated())){
+            return redirect()->route('assignment.index')->with('success', 'Assignment is successfully updated');
+        }
+        return redirect()->route('assignment.index')->with('error', 'Failed to update assignment');
+    }
+
+
+
+    public function destroy(Assignment $assignment){
+        $assignment -> delete();
+
+        return redirect()->route('assignment.index');
+    }
+}

app/Http/Controllers/CourseController.php

@@ -0,0 +1,40 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Http\Request;
+
+class CourseController extends Controller
+{
+
+     /**
+     * Display a listing of the resource.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function index() {
+        //
+    }
+
+    public function create(Request $request) {
+        if(Course::create($request->validated())){
+            return redirect()->route('course.index')->with('success', 'Course is successfully created');
+        }
+        return redirect()->route('course.index')->with('error', 'Failed to create course');
+    }
+
+
+
+    public function update(Request $request,Course $course) {
+        if($course->update($request->validated())){
+            return redirect()->route('course.index')->with('success', 'Course is successfully updated');
+        }
+        return redirect()->route('course.index')->with('error', 'Failed to update course');
+    }
+
+
+    public function destroy(Course $course){
+        $course -> delete();
+        return redirect()->route('course.index');
+    }
+}

app/Http/Requests/AssignmentRequest.php

@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class AssignmentRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, mixed>
+     */
+    public function rules()
+    {
+        return [
+            'name' => 'required|max:255',
+            'due_at' => 'required',
+        ];
+    }
+
+}

app/Http/Requests/CourseRequest.php

@@ -0,0 +1,30 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class CourseRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, mixed>
+     */
+    public function rules()
+    {
+        return [
+            'name' => 'required|max:255',
+        ];
+    }
+}

app/Models/Assignment.php

@@ -9,6 +9,7 @@ class Assignment extends Model {
     use HasFactory;
 
     protected $fillable = [
+        'user_id',
         'course_id',
         'name',
         'due_at'
@@ -18,6 +19,7 @@ class Assignment extends Model {
         'due_at' => 'datetime:Y-m-d H:i:s'
     ];
 
+
     public function course() {
         return $this->belongsTo(Course::class);
     }

app/Models/Course.php

@@ -15,4 +15,8 @@ class Course extends Model {
     public function assignments() {
         return $this->hasMany(Assignment::class);
     }
+
+    public function user(){
+        return $this->belongsTo(User::class);
+    }
 }

app/Models/User.php

@@ -43,4 +43,13 @@ class User extends Authenticatable {
         'email_verified_at' => 'datetime',
         'is_admin' => 'boolean'
     ];
+
+
+    public function courses(){
+        return $this->hasMany(Course::class);
+    }
+
+    public function assignments(){
+        return $this->hasManyThrough(Course::class,Assignment::class);
+    }
 }

app/Policies/AssignmentPolicy.php

@@ -0,0 +1,85 @@
+<?php
+
+namespace App\Policies;
+
+use App\Models\Assignment;
+use App\Models\User;
+use App\Models\Course;
+use Illuminate\Auth\Access\HandlesAuthorization;
+use Illuminate\Auth\Access\Response;
+
+class AssignmentPolicy
+{
+    use HandlesAuthorization;
+
+
+    /**
+     * Determine whether the user can view any models.
+     *
+     * @param  \App\Models\User  $user
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function viewAny(User $user)
+    {
+        return $user->is_admin
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can view the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Assignment  $assignment
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function view(User $user, Course $course, Assignment $assignment)
+    {
+        return (($user->courses()->where('course_id', $course->id)->exist())
+        &&($user->assignments()->where('assignment_id',$assigment->id)->exist()))
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can create models.
+     *
+     * @param  \App\Models\User  $user
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function create()
+    {
+        return true;
+    }
+
+    /**
+     * Determine whether the user can update the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Assignment  $assignment
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function update(User $user, Course $course, Assignment $assignment)
+    {
+        return (($user->courses()->where('course_id', $course->id)->exist())
+        &&($user->assignments()->where('assignment_id',$assigment->id)->exist()))
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can delete the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Assignment  $assignment
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function delete(User $user, Course $course, Assignment $assignment)
+    {
+        return (($user->courses()->where('course_id', $course->id)->exist())
+        &&($user->assignments()->where('assignment_id',$assigment->id)->exist()))
+        ? Response::allow()
+        : Response::deny();
+    }
+
+}

app/Policies/CoursePolicy.php

@@ -0,0 +1,81 @@
+<?php
+
+namespace App\Policies;
+
+use App\Models\Course;
+use App\Models\User;
+use Illuminate\Auth\Access\HandlesAuthorization;
+
+class CoursePolicy
+{
+    use HandlesAuthorization;
+
+    /**
+     * Determine whether the user can view any models.
+     *
+     * @param  \App\Models\User  $user
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function viewAny(User $user)
+    {
+        return $user->is_admin
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can view the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Course  $course
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function view(User $user, Course $course)
+    {
+        return ($user->courses()->where('course_id', $course->id)->exist())
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can create models.
+     *
+     * @param  \App\Models\User  $user
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function create(User $user)
+    {
+        return $user->is_admin
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can update the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Course  $course
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function update(User $user, Course $course)
+    {
+        return ($user->courses()->where('course_id', $course->id)->exist())
+        ? Response::allow()
+        : Response::deny();
+    }
+
+    /**
+     * Determine whether the user can delete the model.
+     *
+     * @param  \App\Models\User  $user
+     * @param  \App\Models\Course  $course
+     * @return \Illuminate\Auth\Access\Response|bool
+     */
+    public function delete(User $user, Course $course)
+    {
+        return ($user->courses()->where('course_id', $course->id)->exist())
+        ? Response::allow()
+        : Response::deny();
+    }   
+
+}

app/Providers/AuthServiceProvider.php

@@ -1,7 +1,9 @@
 <?php
 
 namespace App\Providers;
-
+use App\Models\User;
+use App\Models\Assignment;
+use App\Models\Course;
 use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
 use Illuminate\Support\Facades\Gate;
 
@@ -23,6 +25,5 @@ class AuthServiceProvider extends ServiceProvider {
     public function boot() {
         $this->registerPolicies();
 
-        //
     }
 }