6 months ago

Validation Request vs Authorization Policy

Posted 6 months ago by BillRiess

Both Validation Requests and Authorization Policies seem to overlap when it comes to authorizing access in a Controller. Has anyone found one to be more useful than the other? In my current project I setup many Validation Requests to handle both authorization and input validation. I'm using this throughout my API Resource controllers. Should I be using Policies instead to handle the authorization or is that an unneeded step in my case? Just trying to understand which way would be considered a more ideal approach.

I should note, the authorization mostly revolves around custom Gate policies which are defined via Permissions.

Please sign in or create an account to participate in this conversation.