Level 75
Look into query scopes.
See scope example here https://gist.github.com/jimgwhit/ed44a6c81815804f1ab910ce9eb88d84
Dec 1, 2019
4
Level 3
Roles gradation
Hi,
I made myself somewhat familiar with both spatie an bouncer packages for roles and permissions.
I am wondering though, how to approach about gradation of roles.
Imagine this structure of a blog:
- writer can create / edit / delete his own article only (rank: 1)
- proofreader can edit / delete other writers articles and create / edit / delete his own articles (rank: 2)
- admin can create/ edit / delete anybodys articles (rank: 3)
Does spaties or bouncer comes with something to match the ranking out of the box? If not, could you point me to some videos / other material I could use to make it work please?
Level 3
This is more about user types not query scopes
Level 75
When I looked over spatie examples, it's usually handled with strategic if statements and many times the if statement uses and or or as needed.
Edit: as you probably already know RBAC can be a time consuming and one of the trickiest things to workout in an application.
Which is one of the reasons I like checking at method level if a role matches.
Then a combination of that and query scopes can work out any query needed to let a user see their own data, or an administrator to see all.
You could always check if YouTube has more videos on spatie.
1 like
Level 75
See above reply, but also if you dig around in spatie docs, you will find all types of examples, like:
https://github.com/drbyte/spatie-permissions-demo/blob/master/app/Policies/PostPolicy.php
You have to click on a more detailed link sometimes. The above link was found here: https://github.com/spatie/laravel-permission/blob/master/docs/best-practices/using-policies.md
Please or to participate in this conversation.