Validation Request vs Authorization Policy

Posted 3 months ago by BillRiess

Both Validation Requests and Authorization Policies seem to overlap when it comes to authorizing access in a Controller. Has anyone found one to be more useful than the other? In my current project I setup many Validation Requests to handle both authorization and input validation. I'm using this throughout my API Resource controllers. Should I be using Policies instead to handle the authorization or is that an unneeded step in my case? Just trying to understand which way would be considered a more ideal approach.

I should note, the authorization mostly revolves around custom Gate policies which are defined via Permissions.

Please sign in or create an account to participate in this conversation.

Reply to

Use Markdown with GitHub-flavored code blocks.