Reputation: 273
Laravel Authorization using Policies
So I need help learning how to create policies to do authorization. I understands Gates pretty well, and they work for me, but when I create a policy, it doesn't work.
Here is the code that I'm using. I think the issue that Im having is trying to find out where do you put the check for authorization for a given model function?
public function update(User $user, Message $message)
{
return true;
}
Here I'm just toggling the test to either true or false, just to see how things work. But when I do this in the Message controller:
if ($user->can('update', $message)) {
return 'You can update this post';
}
It doesn't work. I also ran across another approach to checking authorization in the controller using $this->authorize('update', $message); But that didn't work either.
Thank you.
Upvotes: 0
Views: 166
Answers (1)
Reputation: 273
So I got the system to run after sleeting on it. I changed many things, and got stuck in so many places that I didn't know exactly what I did. But it seems that the biggest difference was changing how I registered the policies. In the policies array in the AuthServiceProvider has, apparently an example that is written in during format. Even though the documentation show the registering of the model and policy in the format of ::class at the end, I used the String format. I guess this was my issue.also, I had to pass in an actual instance of a message to the authorize method, instead of using Message::class, approach.
Upvotes: 1
Related Questions
- Why Laravel Policy is not working in View/Blade?
- Laravel - Authorize with other policy
- policy in laravel always unauthorized
- Laravel Policies Via blade template
- Laravel 5.6 Authorizing actions using policies
- Authorization Policies Laravel 5.3, return only 'This action is unauthorized'
- laravel policy authorize always false
- Laravel - Authorization Works from Controller Method only
- Laravel Authorization policy not getting called
- How can I do Authorization Policies in Laravel 5.3?