Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Authorization no Laravel 5.1

Zizaco
September 30, 2015
Technology
5
890

Authorization no Laravel 5.1

Authorization no Laravel 5.1

Vídeo da Apresentação (2015/09/30): https://www.youtube.com/watch?v=hJRt0BDF0Do

Luiz Fernando / Zizaco
http://zizaco.net
Leroy Merlin

ACL

308 mil
Instalações do Entrust
449 mil
Instalações do Sentry
12%
Do total de instalações do Laravel

Taylor Otwell

O que é Laravel?
"A framework is a set of classes (code) that embodies an abstract design for solutions to a family of related problems."
- Brian Foote

O que é Laravel?

Laravel's (5.1.11)
Authorization
https://laravel-news.com/2015/08/laravel-5-1-11-released-now-with-authorization/

Gate
(Portão)

Gate::allows('edit-post', $post);
// true | false

@can('edit-post', $post)
...
@else
...
@endcan

Gate::forUser($user)->denies('edit-post', $post);
// true | false

$gate->allows('edit-post', $post);
// true | false

$user->can('edit-post', $post);
// true | false

Ability (Capacidade)
Gate (Portão)
Polices (Política)

( Live Coding )

Roles & Permissions ?

An Ability that check the Database

Role (Papel)
Permission (Permissão)

( Live Coding )

Ability
Gate
Polices
Role (custom)
Permission (custom)

Role (package)
Permission (package)
Entrust v2.0?

Perguntas?

Zizaco

September 30, 2015
Tweet

More Decks by Zizaco

See All by Zizaco
PHP distribuído, fault-tolerant e assíncrono - Microserviços vs Monolito
zizaco
0
940
Escalando sua aplicação para milhões de visitas.
zizaco
12
1.4k
MongoDB for Analytics
zizaco
0
240
MVP: What? Why? How?
zizaco
0
170
Estratégias de Caching - Escalando sua aplicação para milhões de visitas
zizaco
1
480
Elasticsearch @ Leroy Merlin Website
zizaco
0
290
Laravel e o PHP moderno
zizaco
1
350
Produtividade e qualidade com Laravel
zizaco
2
420
PHP Assíncrono com ReactPHP
zizaco
11
1.4k

Other Decks in Technology

See All in Technology
GraphQL 成熟度モデルの紹介と、プロダクトに当てはめた事例 / GraphQL maturity model
mh4gf
7
1.2k
[PlatformCon 24] Platform Orchestrators: The Missing Middle of Internal Developer Platforms?
danielbryantuk
1
800
コンパウンドスタートアップのためのスケーラブルでセキュアなInfrastructure as Codeパイプラインを考える / Scalable and Secure Infrastructure as Code Pipeline for a Compound Startup
yuyatakeyama
3
4.5k
ChatGPT for IT Service Management (IT Pro)
dahatake
7
1.4k
Janus
bkuhlmann
1
490
日本におけるデータエンジニアリングのこれまでとこれから
foursue
16
4k
エンジニアのキャリアをちょっと楽しくする3本の軸/Three Pillars to Make an Engineer's Career More Enjoyable
kwappa
0
2.5k
テストプロセスで大事にしていること #jasstnano
makky_tyuyan
0
150
ワールドカフェI /チューターを改良する / World Café I and Improving the Tutors
ks91
PRO
0
110
Google Cloud Next '24でブログを10本書いた方法と勉強会を沸かせた方法
yasumuusan
0
250
オーナーシップを持つ領域を明確にする
konifar
13
3k
JSON攻略法.pdf
miyakemito
8
4.4k

Featured

See All Featured
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
104
6.6k
Building Adaptive Systems
keathley
30
1.9k
Stop Working from a Prison Cell
hatefulcrawdad
266
19k
What's new in Ruby 2.0
geeforr
337
31k
No one is an island. Learnings from fostering a developers community.
thoeni
15
2.1k
Unsuck your backbone
ammeep
662
57k
Art, The Web, and Tiny UX
lynnandtonic
288
19k
The Pragmatic Product Professional
lauravandoore
24
5.8k
Teambox: Starting and Learning
jrom
128
8.4k
A better future with KSS
kneath
231
16k
Done Done
chrislema
178
15k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
5
1.5k

Transcript

  1. Authorization no Laravel 5.1

  2. Hello! Programador Desenvolvedor web WebDesigner wannabe Leroy Merlin (Laravel) Sempre

    mais http://zizaco.net Luiz Fernando / Zizaco

  3. ACL

  4. 308 mil Instalações do Entrust

  5. 308 mil Instalações do Entrust 449 mil Instalações do Sentry

    12% Do total de instalações do Laravel

  6. Taylor Otwell

  7. O que é Laravel? "A framework is a set of

    classes (code) that embodies an abstract design for solutions to a family of related problems." - Brian Foote

  8. O que é Laravel? A B C

  9. O que é Laravel? A B C

  10. https://laravel-news.com/2015/08/laravel-5-1-11-released-now-with-authorization/

  11. Laravel's (5.1.11) Authorization

  12. Gate (Portão)

  13. Gate::allows('edit-post', $post); // true | false @can('edit-post', $post) ... @else

    ... @endcan Gate::forUser($user)->denies('edit-post', $post); // true | false

  14. $gate->allows('edit-post', $post); // true | false @can('edit-post', $post) ... @else

    ... @endcan $user->can('edit-post', $post); // true | false

  15. Ability Gate Polices (Capacidade) (Política) (Portão)

  16. ( Live Coding )

  17. Ability Gate Polices

  18. ( Live Coding )

  19. ... protected $abilities = []; protected $policies = []; function

    ($user, ...$params) { } Ability Gate class FooBarPolicy { public function ability($user, ...$params) Polices

  20. Ability Gate Polices $gate->define('edit-post', function ($user, $post) { return $post->user_id

    === $user->id; }); $gate->policy('App\Post', 'App\Policies\PostPolicy'); class PostPolicy { public function edit($user, $post) { return $post->user_id === $user->id;

  21. Gate Gate::allows('edit-post', $post); // true | false Gate::allows('edit', $post); //

    true | false @can('edit', $post); ... @can('edit-post', $post) ... @else ... @endcan

  22. Mr. John Doe { Super Admin } [email protected]

  23. Mr. John Doe { Super Admin } [email protected] Roles &

    Permissions ?

  24. Mr. John Doe { Super Admin } [email protected] An Ability

    that check the Database

  25. Ability Gate Polices Role (custom) Permission (custom) (Papel) (Permissão)

  26. ( Live Coding )

  27. Ability Gate Polices Role (custom) Permission (custom)

  28. Ability Gate Polices Role (package) Permission (package) Entrust v2.0?

  29. Mr. John Doe { Super Admin } [email protected] Perguntas?