<?php

namespace App\Models\Policies;

use Illuminate\Auth\Access\HandlesAuthorization;

use App\Models\Invoice;
use App\User;

class InvoicePolicy
{
	use HandlesAuthorization;

	/**
	 * Determine whether the user can view the service.
	 *
	 * @param  \App\User $user
	 * @param Invoice	$o
	 * @return mixed
	 */
	public function view(User $user, Invoice $o)
	{
		// If this is a service for an account managed by a user.
		return ($user->invoices->pluck('id')->search($o->id))

		// The user is the wholesaler
			OR $user->isWholesaler()

		// The user is the reseller
			OR $user->all_accounts()->pluck('id')->search($o->account_id);
	}

	/**
	 * Determine whether the user can create services.
	 *
	 * @param  \App\User  $user
	 * @return mixed
	 */
	public function create(User $user)
	{
		return TRUE;
	}

	/**
	 * Determine whether the user can update the service.
	 *
	 * @param  \App\User  $user
	 * @param  Invoice	$o
	 * @return mixed
	 */
	public function update(User $user, Invoice $o)
	{
		return $user->isWholesaler();
	}

	/**
	 * Determine whether the user can delete the service.
	 *
	 * @param  \App\User  $user
	 * @param  Invoice	$o
	 * @return mixed
	 */
	public function delete(User $user, Invoice $o)
	{
		return $user->isWholesaler();
	}

	/**
	 * Determine whether the user can restore the service.
	 *
	 * @param  \App\User  $user
	 * @param  Invoice	$o
	 * @return mixed
	 */
	public function restore(User $user, Invoice $o)
	{
		return $user->isWholesaler();
	}

	/**
	 * Determine whether the user can permanently delete the service.
	 *
	 * @param  \App\User  $user
	 * @param  Invoice	$o
	 * @return mixed
	 */
	public function forceDelete(User $user, Invoice $o)
	{
		return $user->isWholesaler();
	}
}