38 lines
966 B
PHP
38 lines
966 B
PHP
<?php
|
|
|
|
namespace Api\Controllers;
|
|
|
|
use Api\Core\Controller;
|
|
use Api\Core\Response;
|
|
use Api\Models\Learner;
|
|
use Api\Core\Auth;
|
|
|
|
class LearnerController extends Controller {
|
|
public function index() {
|
|
$user = Auth::getUser();
|
|
if (!$user) return Response::error('Unauthorized', 401);
|
|
|
|
if ($user['role'] === 'Super Admin') {
|
|
$learners = Learner::all();
|
|
} else {
|
|
$learners = Learner::getBySchool($user['school_id']);
|
|
}
|
|
|
|
Response::json($learners);
|
|
}
|
|
|
|
public function show($id) {
|
|
$user = Auth::getUser();
|
|
if (!$user) return Response::error('Unauthorized', 401);
|
|
|
|
$learner = Learner::find($id);
|
|
|
|
if (!$learner) Response::error('Learner not found', 404);
|
|
|
|
if ($user['role'] !== 'Super Admin' && $learner['school_id'] != $user['school_id']) {
|
|
Response::error('Unauthorized', 403);
|
|
}
|
|
|
|
Response::json($learner);
|
|
}
|
|
} |