Document permission check methods

2024-11-27 11:03:37 +08:00 · 2019-08-20 17:18:18 +02:00 · 2019-08-20 17:18:18 +02:00 · 279c7df9b9
commit 279c7df9b9
parent 04bcf1eef6
1 changed files with 13 additions and 0 deletions
--- a/src/User/AssertPermissionTrait.php
+++ b/src/User/AssertPermissionTrait.php
@ -17,6 +17,13 @@ use Flarum\User\Exception\PermissionDeniedException;
 trait AssertPermissionTrait
 {
    /**
+     * Ensure the current user is allowed to do something.
+     *
+     * If the condition is not met, an exception will be thrown that signals the
+     * lack of permissions. This is about *authorization*, i.e. retrying such a
+     * request / operation without a change in permissions (or using another
+     * user account) is pointless.
+     *
     * @param bool $condition
     * @throws PermissionDeniedException
     */
@ -28,6 +35,12 @@ trait AssertPermissionTrait
    }

    /**
+     * Ensure the current user is authenticated.
+     *
+     * This will throw an exception for guest users, signaling that
+     * *authorization* failed. Thus, they could retry the operation after
+     * logging in (or using other means of authentication).
+     *
     * @param bool $condition
     * @throws NotAuthenticatedException
     */