Paul Wright
Reputation: 455
How to restrict access to delete in laravel using sentry
Using Laravel 4 and Sentry. I have a CRUD admin system that managers and admins can access. I want managers to have access to all CRUD operations except for DELETE. I know that I can add a line such as
@if (Sentry::check())
in my view to ensure the user is logged in, but don't know how to check that they are an admin.
I have the following filter
Route::filter('auth.admin', function()
{
$user = Sentry::getUser();
$admin = Sentry::findGroupByName('Admins');
if (!$user->inGroup($admin)) return Redirect::to('admin/login');
});
Upvotes: 0
Views: 234
Answers (1)
Jarek Tkaczyk
Reputation: 81187
Easy way:
if (Sentry::getUser()->isSuperUser())
// or
if (Sentry::hasPermission('superuser')) // or admin or whatever permission you want
or excplicitly:
if (Sentry::hasPermission('delete'))
Upvotes: 0
Related Questions
- how to set permissions by the owner using sentry laravel 4
- How to Use Permissions in Sentry for Laravel application
- Laravel Sentry restrict Edit permissions to Creator
- How to: implement sentry 2 permissions with Laravel 4?
- Soft deleting with Sentry 2 and Laravel 4.2
- Laravel 4.1 - Sentry 2 User group access/permission
- Laravel 4 and Sentry 2 ACL structure and access control levels
- Sentry 2 for laravel 4 ACL
- Laravel 4 DELETE / PUT being blocked
- Laravel 4, Sentry 2 and user permissions