blumilksoftware · EwelinaSkrzypacz · Oct 6, 2025 · Oct 6, 2025 · Oct 6, 2025
@@ -0,0 +1,21 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Blumilksoftware\Lmt\Enums;
+
+use Filament\Support\Contracts\HasLabel;
+
+enum Role: string implements HasLabel
+{
+    case Moderator = "moderator";
+    case Admin = "admin";
+
+    public function getLabel(): ?string
+    {
+        return match ($this) {
+            self::Moderator => "Moderator",
+            self::Admin => "Administrator",
+        };
+    }
+}
@@ -0,0 +1,120 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Blumilksoftware\Lmt\Filament\Resources;
+
+use Blumilksoftware\Lmt\Enums\Role;
+use Blumilksoftware\Lmt\Filament\Resources\UserResource\Pages;
+use Blumilksoftware\Lmt\Models\User;
+use Filament\Forms;
+use Filament\Forms\Components\Section;
+use Filament\Forms\Components\Split;
+use Filament\Forms\Form;
+use Filament\Resources\Resource;
+use Filament\Tables;
+use Filament\Tables\Table;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Support\Facades\Hash;
+
+class UserResource extends Resource
+{
+    protected static ?string $model = User::class;
+    protected static ?string $label = "Użytkownik";
+    protected static ?string $pluralLabel = "Użytkownicy";
+    protected static ?string $navigationIcon = "heroicon-o-user-group";
+
+    public static function form(Form $form): Form
+    {
+        /** @var User $authUser */
+        $authUser = auth()->user();
+
+        return $form
+            ->schema([
+                Split::make([
+                    Section::make([
+                        Forms\Components\TextInput::make("name")
+                            ->label("Imię i nazwisko")
+                            ->required()
+                            ->maxLength(255),
+                        Forms\Components\TextInput::make("email")
+                            ->label("E-mail")
+                            ->required()
+                            ->maxLength(255)
+                            ->email()
+                            ->unique(ignoreRecord: true),
+                        Forms\Components\Select::make("role")
+                            ->label("Rola")
+                            ->disabled(fn(string $context): bool => !($context === "create") && $authUser->id === $form->model->id)
+                            ->options(Role::class)
+                            ->required(),
+                    ]),
+                    Section::make([
+                        Forms\Components\TextInput::make("password")
+                            ->label("Hasło")
+                            ->minValue(8)
+                            ->required(fn(string $context): bool => $context === "create")
+                            ->dehydrateStateUsing(fn(string $state): string => Hash::make($state))
+                            ->dehydrated(fn(?string $state): bool => filled($state))
+                            ->password()
+                            ->confirmed(),
+                        Forms\Components\TextInput::make("password_confirmation")
+                            ->label("Potwierdź hasło")
+                            ->required(fn(string $context): bool => $context === "create")
+                            ->dehydrateStateUsing(fn(string $state): string => Hash::make($state))
+                            ->dehydrated(fn(?string $state): bool => filled($state))
+                            ->password(),
+                        Forms\Components\Checkbox::make("active")
+                            ->disabled(fn(User $user): bool => $user->id === $authUser->id)
+                            ->label("Aktywny")
+                            ->default(true),
+                    ]),
+                ])->from("lg"),
+            ])->columns(1);
+    }
+
+    public static function table(Table $table): Table
+    {
+        return $table
+            ->columns([
+                Tables\Columns\TextColumn::make("name")
+                    ->label("Imię i nazwisko")
+                    ->searchable(),
+                Tables\Columns\TextColumn::make("email")
+                    ->label("E-mail")
+                    ->searchable(),
+                Tables\Columns\CheckboxColumn::make("active")
+                    ->disabled(fn(User $user): bool => $user->id === auth()->user()->id)
+                    ->label("Aktywny"),
+                Tables\Columns\TextColumn::make("role")
+                    ->label("Rola"),
+            ])
+            ->filters([])
+            ->actions([
+                Tables\Actions\EditAction::make(),
+                Tables\Actions\DeleteAction::make(),
+            ]);
+    }
+
+    public static function getPages(): array
+    {
+        return [
+            "index" => Pages\ListUsers::route("/"),
+            "create" => Pages\CreateUser::route("/create"),
+            "edit" => Pages\EditUser::route("/{record}/edit"),
+        ];
+    }
+
+    public static function canAccess(): bool
+    {
+        return auth()->user()->isAdmin();
+    }
+
+    public static function canDelete(Model $record): bool
+    {
+        /** @var User $user */
+        $user = auth()->user();
+
+        return $user->isAdmin() && $record->id !== $user->id;
+    }
+}
@@ -0,0 +1,13 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Blumilksoftware\Lmt\Filament\Resources\UserResource\Pages;
+
+use Blumilksoftware\Lmt\Filament\Resources\UserResource;
+use Filament\Resources\Pages\CreateRecord;
+
+class CreateUser extends CreateRecord
+{
+    protected static string $resource = UserResource::class;
+}
@@ -0,0 +1,21 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Blumilksoftware\Lmt\Filament\Resources\UserResource\Pages;
+
+use Blumilksoftware\Lmt\Filament\Resources\UserResource;
+use Filament\Actions;
+use Filament\Resources\Pages\EditRecord;
+
+class EditUser extends EditRecord
+{
+    protected static string $resource = UserResource::class;
+
+    protected function getHeaderActions(): array
+    {
+        return [
+            Actions\DeleteAction::make(),
+        ];
+    }
+}
@@ -0,0 +1,21 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Blumilksoftware\Lmt\Filament\Resources\UserResource\Pages;
+
+use Blumilksoftware\Lmt\Filament\Resources\UserResource;
+use Filament\Actions;
+use Filament\Resources\Pages\ListRecords;
+
+class ListUsers extends ListRecords
+{
+    protected static string $resource = UserResource::class;
+
+    protected function getHeaderActions(): array
+    {
+        return [
+            Actions\CreateAction::make(),
+        ];
+    }
+}
@@ -4,6 +4,7 @@
 
 namespace Blumilksoftware\Lmt\Models;
 
+use Blumilksoftware\Lmt\Enums\Role;
 use database\factories\UserFactory;
 use Filament\Models\Contracts\FilamentUser;
 use Filament\Panel;
@@ -16,24 +17,51 @@
  * @property string $name
  * @property string $email
  * @property string $password
+ * @property bool $active
+ * @property Role $role
  * @property bool $contact_notifications
  * @property Carbon $created_at
  * @property Carbon $updated_at
+ * @property-read bool $isAdmin
  */
 class User extends Authenticatable implements FilamentUser
 {
     /** @use HasFactory<UserFactory> */
     use HasFactory;
 
     protected $guarded = [];
+    protected $fillable = [
+        "name",
+        "email",
+        "password",
+        "role",
+        "moderator",
+        "active",
+    ];
     protected $hidden = [
         "password",
         "remember_token",
     ];
+    protected $casts = [
+        "active" => "boolean",
+        "email_verified_at" => "datetime",
+        "password" => "hashed",
+        "role" => Role::class,
+    ];
 
     public function canAccessPanel(Panel $panel): bool
     {
-        return str_ends_with($this->email, config("app.allowed_email_domain"));
+        return $this->active && str_ends_with($this->email, config("app.allowed_email_domain"));
+    }
+
+    public function isModerator(): bool
+    {
+        return $this->role === Role::Moderator;
+    }
+
+    public function isAdmin(): bool
+    {
+        return $this->role === Role::Admin;
     }
 
     protected function casts(): array

@@ -5,6 +5,7 @@
 namespace Blumilksoftware\Lmt\Providers\Filament;
 
 use Blumilksoftware\Lmt\Filament\Resources\MeetupResource;
+use Blumilksoftware\Lmt\Filament\Resources\UserResource;
 use Filament\Http\Middleware\Authenticate;
 use Filament\Http\Middleware\AuthenticateSession;
 use Filament\Http\Middleware\DisableBladeIconComponents;
@@ -35,6 +36,7 @@ public function panel(Panel $panel): Panel
             ])
             ->resources([
                 MeetupResource::class,
+                UserResource::class,
             ])
             ->pages([])
             ->widgets([])

@@ -4,6 +4,7 @@
 
 namespace Database\Factories;
 
+use Blumilksoftware\Lmt\Enums\Role;
 use Blumilksoftware\Lmt\Models\User;
 use Illuminate\Database\Eloquent\Factories\Factory;
 use Illuminate\Support\Facades\Hash;
@@ -21,6 +22,8 @@ public function definition(): array
             "email" => fake()->unique()->safeEmail(),
             "password" => Hash::make("password"),
             "remember_token" => Str::random(10),
+            "active" => true,
+            "role" => Role::Admin,
         ];
     }
 }
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Schema;
+
+return new class() extends Migration {
+    public function up(): void
+    {
+        Schema::table("users", function (Blueprint $table): void {
+            $table->string("role")->default("admin");
+            $table->boolean("active")->default(true);
+        });
+    }
+
+    public function down(): void
+    {
+        Schema::table("users", function (Blueprint $table): void {
+            $table->dropColumn("role");
+            $table->dropColumn("active");
+        });
+    }
+};