Merge pull request #2206 from suraj-webkul/issue#2141

VikassWebkul214254 · web-flow · commit 1d2e602cc25a · 2025-07-04T12:32:22.000+05:30
issue #2141 has been fixed.
diff --git a/packages/Webkul/Admin/src/Http/Controllers/Settings/UserController.php b/packages/Webkul/Admin/src/Http/Controllers/Settings/UserController.php
@@ -4,6 +4,7 @@
 
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\Resources\Json\JsonResource;
+use Illuminate\Support\Arr;
 use Illuminate\Support\Facades\Event;
 use Illuminate\Support\Facades\Mail;
 use Illuminate\View\View;
@@ -58,25 +59,24 @@ public function store(): View|JsonResponse
             'password'         => 'nullable',
             'confirm_password' => 'nullable|required_with:password|same:password',
             'role_id'          => 'required',
+            'status'           => 'boolean|in:0,1',
+            'view_permission'  => 'string|in:global,group,individual',
         ]);
 
         $data = request()->all();
 
-        if (isset($data['password']) && $data['password']) {
+        if (
+            isset($data['password'])
+            && $data['password']
+        ) {
             $data['password'] = bcrypt($data['password']);
         }
 
-        $data['status'] = $data['status'] ? 1 : 0;
-
         Event::dispatch('settings.user.create.before');
 
         $admin = $this->userRepository->create($data);
 
-        $admin->view_permission = $data['view_permission'];
-
-        $admin->save();
-
-        $admin->groups()->sync(request('groups') ?? []);
+        $admin->groups()->sync($data['groups'] ?? []);
 
         try {
             Mail::queue(new UserCreatedNotification($admin));
@@ -111,33 +111,33 @@ public function update(int $id): JsonResponse
     {
         $this->validate(request(), [
             'email'            => 'required|email|unique:users,email,'.$id,
-            'name'             => 'required',
-            'password'         => 'nullable',
+            'name'             => 'required|string',
+            'password'         => 'nullable|string|min:6',
             'confirm_password' => 'nullable|required_with:password|same:password',
-            'role_id'          => 'required',
+            'role_id'          => 'required|integer|exists:roles,id',
+            'status'           => 'nullable|boolean|in:0,1',
+            'view_permission'  => 'required|string|in:global,group,individual',
         ]);
 
         $data = request()->all();
 
-        if (! $data['password']) {
-            unset($data['password'], $data['confirm_password']);
+        if (empty($data['password'])) {
+            $data = Arr::except($data, ['password', 'confirm_password']);
         } else {
             $data['password'] = bcrypt($data['password']);
         }
 
-        if (auth()->guard('user')->user()->id != $id) {
-            $data['status'] = $data['status'] ? 1 : 0;
+        $authUser = auth()->guard('user')->user();
+
+        if ($authUser->id == $id) {
+            $data['status'] = true;
         }
 
         Event::dispatch('settings.user.update.before', $id);
 
         $admin = $this->userRepository->update($data, $id);
 
-        $admin->view_permission = $data['view_permission'];
-
-        $admin->save();
-
-        $admin->groups()->sync(request()->input('groups') ?? []);
+        $admin->groups()->sync($data['groups'] ?? []);
 
         Event::dispatch('settings.user.update.after', $admin);
 
diff --git a/packages/Webkul/Admin/src/Resources/lang/en/app.php b/packages/Webkul/Admin/src/Resources/lang/en/app.php
@@ -1243,24 +1243,25 @@
                 ],
 
                 'create' => [
-                    'confirm-password' => 'Confirm Password',
-                    'email'            => 'Email',
-                    'general'          => 'General',
-                    'global'           => 'Global',
-                    'group'            => 'Group',
-                    'individual'       => 'Individual',
-                    'name'             => 'Name',
-                    'password'         => 'Password',
-                    'permission'       => 'Permission',
-                    'role'             => 'Role',
-                    'save-btn'         => 'Save User',
-                    'status'           => 'Status',
-                    'title'            => 'Create User',
-                    'view-permission'  => 'View Permission',
+                    'confirm-password'         => 'Confirm Password',
+                    'email'                    => 'Email',
+                    'general'                  => 'General',
+                    'global'                   => 'Global',
+                    'group'                    => 'Group',
+                    'individual'               => 'Individual',
+                    'name'                     => 'Name',
+                    'password'                 => 'Password',
+                    'permission'               => 'Permission',
+                    'role'                     => 'Role',
+                    'save-btn'                 => 'Save User',
+                    'status'                   => 'Status',
+                    'title'                    => 'Create User',
+                    'view-permission'          => 'View Permission',
+                    'select-at-lest-one-group' => 'Select at least one group',
                 ],
 
                 'edit' => [
-                    'title' => 'Edit User',
+                    'title'                    => 'Edit User',
                 ],
             ],
         ],
diff --git a/packages/Webkul/Admin/src/Resources/views/settings/users/index.blade.php b/packages/Webkul/Admin/src/Resources/views/settings/users/index.blade.php
@@ -369,6 +369,7 @@ class="cursor-pointer rounded-md p-1.5 text-2xl transition-all hover:bg-gray-200
                                         name="view_permission"
                                         rules="required"
                                         v-model="user.view_permission"
+                                        value="global"
                                         :label="trans('admin::app.settings.users.index.create.view-permission')"
                                     >
                                         <!-- Default Option -->
@@ -393,37 +394,39 @@ class="cursor-pointer rounded-md p-1.5 text-2xl transition-all hover:bg-gray-200
 
                             {!! view_render_event('admin.settings.users.index.form.role_id.before') !!}
 
-                            <!-- Group -->
-                            <x-admin::form.control-group>
-                                <x-admin::form.control-group.label class="required">
-                                    @lang('admin::app.settings.users.index.create.group')
-                                </x-admin::form.control-group.label>
+                            <template v-if="user.view_permission === 'group'">
+                                <!-- Group -->
+                                <x-admin::form.control-group>
+                                    <x-admin::form.control-group.label class="required">
+                                        @lang('admin::app.settings.users.index.create.group')
+                                    </x-admin::form.control-group.label>
 
-                                <v-field
-                                    name="groups[]"
-                                    rules="required"
-                                    label="@lang('admin::app.settings.users.index.create.group')"
-                                    multiple
-                                    v-model="user.groups"
-                                >
-                                    <select
+                                    <v-field
                                         name="groups[]"
-                                        class="flex min-h-[39px] w-full rounded-md border px-3 py-2 text-sm text-gray-600 transition-all hover:border-gray-400 focus:border-gray-400 dark:border-gray-800 dark:bg-gray-900 dark:text-gray-300 dark:hover:border-gray-400 dark:focus:border-gray-400"
-                                        :class="[errors['groups[]'] ? 'border !border-red-600 hover:border-red-600' : '']"
+                                        label="@lang('admin::app.settings.users.index.create.group')"
                                         multiple
                                         v-model="user.groups"
+                                        rules="required"
                                     >
-                                        <option
-                                            v-for="group in groups"
-                                            :value="group.id"
-                                            :text="group.name"
+                                        <select
+                                            name="groups[]"
+                                            class="flex min-h-[39px] w-full rounded-md border px-3 py-2 text-sm text-gray-600 transition-all hover:border-gray-400 focus:border-gray-400 dark:border-gray-800 dark:bg-gray-900 dark:text-gray-300 dark:hover:border-gray-400 dark:focus:border-gray-400"
+                                            :class="[errors['groups[]'] ? 'border !border-red-600 hover:border-red-600' : '']"
+                                            multiple
+                                            v-model="user.groups"
                                         >
-                                        </option>
-                                    </select>
-                                </v-field>
+                                            <option
+                                                v-for="group in groups"
+                                                :value="group.id"
+                                                :text="group.name"
+                                            >
+                                            </option>
+                                        </select>
+                                    </v-field>
 
-                                <x-admin::form.control-group.error name="groups[]" />
-                            </x-admin::form.control-group>
+                                    <x-admin::form.control-group.error name="groups[]" />
+                                </x-admin::form.control-group>
+                            </template>
 
                             {!! view_render_event('admin.settings.users.index.form.role_id.after') !!}
 
@@ -487,7 +490,9 @@ class="primary-button justify-center"
 
                         groups:  @json($groups),
 
-                        user: {},
+                        user: {
+                            view_permission: 'global',
+                        },
                     };
                 },
 
@@ -545,23 +550,28 @@ class="primary-button justify-center"
 
                         this.isProcessing = true;
 
-                        this.$axios.post(params.id ? `{{ route('admin.settings.users.update', '') }}/${params.id}` : "{{ route('admin.settings.users.store') }}", userForm).then(response => {
-                            this.isProcessing = false;
+                        this.$axios.post(
+                                params.id
+                                ? `{{ route('admin.settings.users.update', '') }}/${params.id}`
+                                : "{{ route('admin.settings.users.store') }}", userForm
+                            )
+                            .then(response => {
+                                this.isProcessing = false;
 
-                            this.$refs.userUpdateAndCreateModal.toggle();
+                                this.$refs.userUpdateAndCreateModal.toggle();
 
-                            this.$emitter.emit('add-flash', { type: 'success', message: response.data.message });
+                                this.$emitter.emit('add-flash', { type: 'success', message: response.data.message });
 
-                            this.$refs.datagrid.get();
+                                this.$refs.datagrid.get();
 
-                            resetForm();
-                        }).catch(error => {
-                            this.isProcessing = false;
+                                resetForm();
+                            }).catch(error => {
+                                this.isProcessing = false;
 
-                            if (error.response.status === 422) {
-                                setErrors(error.response.data.errors);
-                            }
-                        });
+                                if (error.response.status === 422) {
+                                    setErrors(error.response.data.errors);
+                                }
+                            });
                     },
 
                     editModal(url) {
diff --git a/packages/Webkul/Admin/tests/e2e-pw/tests/settings/user/users.spec.ts b/packages/Webkul/Admin/tests/e2e-pw/tests/settings/user/users.spec.ts
@@ -42,7 +42,47 @@ async function createGroup(adminPage) {
 }
 
 test.describe("user management", () => {
-    test("should create a user", async ({ adminPage }) => {
+    test("should create a user with global permission", async ({ adminPage }) => {
+        /**
+         * Reaching to the user listing page.
+         */
+        await adminPage.goto("admin/settings/users");
+
+        /**
+         * Opening create user form in modal.
+         */
+        await adminPage.getByRole("button", { name: "Create User" }).click();
+
+        /**
+         * Filling the form with user details.
+         */
+        await adminPage.locator('input[name="name"]').fill(generateFullName());
+        await adminPage.locator('input[name="email"]').fill(generateEmail());
+        await adminPage.locator('input[name="password"]').fill("admin123");
+        await adminPage
+            .locator('input[name="confirm_password"]')
+            .fill("admin123");
+        await adminPage.locator('select[name="role_id"]').selectOption("1");
+        await adminPage
+            .locator('select[name="view_permission"]')
+            .selectOption("global");
+
+        /**
+         *  Clicking on the status toggler to make the user active.
+         */
+        await adminPage.click('label[for="status"]');
+
+        /**
+         * Save user and close the modal.
+         */
+        await adminPage.getByRole("button", { name: "Save User" }).click();
+
+        await expect(
+            adminPage.getByText("User created successfully.")
+        ).toBeVisible();
+    });
+
+    test("should create a user with group permission", async ({ adminPage }) => {
         /**
          * Creating a group to assign to the user.
          */
@@ -70,8 +110,7 @@ test.describe("user management", () => {
         await adminPage.locator('select[name="role_id"]').selectOption("1");
         await adminPage
             .locator('select[name="view_permission"]')
-            .selectOption("global");
-        // await adminPage.locator('select[name="groups[]"]').selectOption("1");
+            .selectOption("group");
         await adminPage.getByRole('listbox').selectOption({ label: name.groupName });
 
         /**
@@ -89,6 +128,46 @@ test.describe("user management", () => {
         ).toBeVisible();
     });
 
+    test("should create a user with individual permission", async ({ adminPage }) => {
+        /**
+         * Reaching to the user listing page.
+         */
+        await adminPage.goto("admin/settings/users");
+
+        /**
+         * Opening create user form in modal.
+         */
+        await adminPage.getByRole("button", { name: "Create User" }).click();
+
+        /**
+         * Filling the form with user details.
+         */
+        await adminPage.locator('input[name="name"]').fill(generateFullName());
+        await adminPage.locator('input[name="email"]').fill(generateEmail());
+        await adminPage.locator('input[name="password"]').fill("admin123");
+        await adminPage
+            .locator('input[name="confirm_password"]')
+            .fill("admin123");
+        await adminPage.locator('select[name="role_id"]').selectOption("1");
+        await adminPage
+            .locator('select[name="view_permission"]')
+            .selectOption("individual");
+
+        /**
+         *  Clicking on the status toggler to make the user active.
+         */
+        await adminPage.click('label[for="status"]');
+
+        /**
+         * Save user and close the modal.
+         */
+        await adminPage.getByRole("button", { name: "Save User" }).click();
+
+        await expect(
+            adminPage.getByText("User created successfully.")
+        ).toBeVisible();
+    });
+
     test("should edit a users", async ({ adminPage }) => {
         /**
          * Generating new name and email for the user.
diff --git a/packages/Webkul/User/src/Models/User.php b/packages/Webkul/User/src/Models/User.php
@@ -25,6 +25,7 @@ class User extends Authenticatable implements UserContract
         'api_token',
         'role_id',
         'status',
+        'view_permission',
     ];
 
     /**
