User administration in C.A.R. 911 is handled by the UsuarioController, which provides comprehensive CRUD operations and profile management functionality.
User Model Structure
The User model includes the following fillable attributes:
protected $fillable = [
'name',
'apellido',
'lp',
'dni',
'email',
'password',
'photo',
'theme'
];
User Attributes
User’s last name (surname)
License plate or identification number (must be unique)
National identity document number
User’s email address (must be unique)
User’s password (hashed before storage)
Path to user’s profile photo
User’s theme preference (light or dark)
Listing Users
Retrieve all users with pagination:
public function index(Request $request)
{
$usuarios = User::paginate(100);
return view('usuarios.index', compact('usuarios'));
}
The system uses pagination with 100 users per page. Remember to add {!! $usuarios->links() !!} in your view to display pagination controls.
Creating Users
Load all available roles for assignment:
public function create()
{
$roles = Role::pluck('name', 'name')->all();
return view('usuarios.crear', compact('roles'));
}
Store New User
Validate Input
Validate all required fields with specific rules:$this->validate($request, [
'name' => 'required',
'apellido' => 'required',
'lp' => 'required',
'dni' => 'required',
'email' => 'required|email|unique:users,email',
'password' => 'required|same:confirm-password',
'roles' => 'required'
]);
Check for Duplicates
Prevent duplicate users based on the LP field:$u = User::where('lp', $request->lp)->first();
if (!is_null($u)) {
return back()->with('error', 'Ya se encuentra un usuario con el mismo LP');
}
Hash Password and Create User
Hash the password and create the user record:$input = $request->all();
$input['password'] = Hash::make($input['password']);
$user = User::create($input);
$user->assignRole($request->input('roles'));
return redirect()->route('usuarios.index');
The LP (license plate) field must be unique. The system will reject user creation if another user with the same LP already exists.
Updating Users
Load the user, roles, and current role assignment:
public function edit($id)
{
$user = User::find($id);
$roles = Role::pluck('name', 'name')->all();
$userRole = $user->roles->pluck('name', 'name')->all();
return view('usuarios.editar', compact('user', 'roles', 'userRole'));
}
Update User Data
Update user information with validation:
public function update(Request $request, $id)
{
$this->validate($request, [
'name' => 'required',
'apellido' => 'required',
'lp' => 'required',
'dni' => 'required',
'email' => 'required|email|unique:users,email,' . $id,
'password' => 'same:confirm-password',
'roles' => 'required'
]);
$input = $request->all();
if (!empty($input['password'])) {
$input['password'] = Hash::make($input['password']);
} else {
$input = Arr::except($input, array('password'));
}
$user = User::find($id);
$user->update($input);
DB::table('model_has_roles')->where('model_id', $id)->delete();
$user->assignRole($request->input('roles'));
return redirect()->route('usuarios.index');
}
When updating a user, if the password field is empty, it will not be changed. Only provide a password value when you want to update it.
Profile Management
Update Profile with Photo
Users can update their profile information including uploading a photo:
public function updateProfile(Request $request)
{
$this->validate($request, [
'name' => 'required|string|max:255',
'email' => 'required|email|unique:users,email,' . $request->user_id,
'photo' => 'nullable|image|mimes:jpeg,png,jpg,gif|max:2048',
]);
$user = User::findOrFail($request->user_id);
$input = $request->only(['name', 'email']);
// Handle photo upload
if ($request->hasFile('photo')) {
// Delete old photo if exists
if ($user->photo && file_exists(public_path($user->photo))) {
unlink(public_path($user->photo));
}
// Save new photo
$image = $request->file('photo');
$imageName = 'profile_' . $user->id . '_' . time() . '.' . $image->getClientOriginalExtension();
$image->move(public_path('uploads/profiles'), $imageName);
$input['photo'] = 'uploads/profiles/' . $imageName;
}
$user->update($input);
return response()->json([
'success' => true,
'message' => 'Perfil actualizado correctamente',
'photo_url' => $user->photo ? asset($user->photo) : asset('img/logo.png')
]);
}
Profile photo must be an image (jpeg, png, jpg, gif) with maximum size of 2MB
Update Theme Preference
Users can switch between light and dark themes:
public function updateTheme(Request $request)
{
$this->validate($request, [
'theme' => 'required|in:light,dark'
]);
$user = auth()->user();
$user->theme = $request->theme;
$user->save();
return response()->json([
'success' => true,
'message' => 'Tema actualizado correctamente',
'theme' => $user->theme
]);
}
Deleting Users
Delete a user from the system:
public function destroy($id)
{
User::find($id)->delete();
return redirect()->route('usuarios.index');
}
Deleting a user is permanent. Consider implementing soft deletes if you need to maintain historical records.
Routes for User Management
User administration routes are protected by authentication:
Route::group(['middleware' => ['auth']], function () {
Route::resource('usuarios', UsuarioController::class);
Route::post('/profile/update', [UsuarioController::class, 'updateProfile'])->name('profile.update');
Route::post('/profile/update-theme', [UsuarioController::class, 'updateTheme'])->name('profile.updateTheme');
});
Available Routes
GET /usuarios - List all usersGET /usuarios/create - Show create formPOST /usuarios - Store new userGET /usuarios/{id}/edit - Show edit formPUT /usuarios/{id} - Update userDELETE /usuarios/{id} - Delete userPOST /profile/update - Update user profile with photoPOST /profile/update-theme - Update user theme preference
User Relationships
The User model defines relationships with other models:
public function auditoria(){
return $this->hasMany(Auditoria::class);
}
Required Imports
When working with users, ensure you import the necessary dependencies:
use App\Models\User;
use Spatie\Permission\Models\Role;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Arr;
Best Practices
Always Hash Passwords
Never store plain text passwords. Always use Hash::make() before saving:$input['password'] = Hash::make($input['password']);
Validate Email Uniqueness
When creating users, ensure emails are unique. When updating, exclude the current user from uniqueness check:'email' => 'required|email|unique:users,email,' . $id
Handle Photo Uploads Carefully
Always delete old photos before uploading new ones to prevent disk space issues.
Assign Roles Immediately
After creating a user, immediately assign roles to ensure proper access control:$user->assignRole($request->input('roles'));
Clean Up Role Assignments
When updating users, clear old role assignments before assigning new ones:DB::table('model_has_roles')->where('model_id', $id)->delete();
$user->assignRole($request->input('roles'));