Level 6
@mil_ you can use https://spatie.be/docs/laravel-permission/v5/introduction for the role permissions
1 like
Oct 31, 2021
2
Level 1
Secure Api endpoints
Hi,
What is the best practice to secure api endpoints from users that shouldnt have access, right now i am checking if user id have access to resources with sql query in controller is there better practice to do that?
Level 80
@mil_ Use authorisation to determine what a user can and cannot do.
Please or to participate in this conversation.