Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Authorization no Laravel 5.1

Zizaco
September 30, 2015
Technology
5
930

Authorization no Laravel 5.1

Authorization no Laravel 5.1

Vídeo da Apresentação (2015/09/30): https://www.youtube.com/watch?v=hJRt0BDF0Do

Luiz Fernando / Zizaco
http://zizaco.net
Leroy Merlin

ACL

308 mil
Instalações do Entrust
449 mil
Instalações do Sentry
12%
Do total de instalações do Laravel

Taylor Otwell

O que é Laravel?
"A framework is a set of classes (code) that embodies an abstract design for solutions to a family of related problems."
- Brian Foote

O que é Laravel?

Laravel's (5.1.11)
Authorization
https://laravel-news.com/2015/08/laravel-5-1-11-released-now-with-authorization/

Gate
(Portão)

Gate::allows('edit-post', $post);
// true | false

@can('edit-post', $post)
...
@else
...
@endcan

Gate::forUser($user)->denies('edit-post', $post);
// true | false

$gate->allows('edit-post', $post);
// true | false

$user->can('edit-post', $post);
// true | false

Ability (Capacidade)
Gate (Portão)
Polices (Política)

( Live Coding )

Roles & Permissions ?

An Ability that check the Database

Role (Papel)
Permission (Permissão)

( Live Coding )

Ability
Gate
Polices
Role (custom)
Permission (custom)

Role (package)
Permission (package)
Entrust v2.0?

Perguntas?

Zizaco

September 30, 2015
Tweet

More Decks by Zizaco

See All by Zizaco
PHP distribuído, fault-tolerant e assíncrono - Microserviços vs Monolito
zizaco
0
1.1k
Escalando sua aplicação para milhões de visitas.
zizaco
12
1.5k
MongoDB for Analytics
zizaco
0
260
MVP: What? Why? How?
zizaco
0
220
Estratégias de Caching - Escalando sua aplicação para milhões de visitas
zizaco
1
550
Elasticsearch @ Leroy Merlin Website
zizaco
0
310
Laravel e o PHP moderno
zizaco
1
360
Produtividade e qualidade com Laravel
zizaco
2
510
PHP Assíncrono com ReactPHP
zizaco
11
1.5k

Other Decks in Technology

See All in Technology
Dynamic Reteaming And Self Organization
miholovesq
3
630
Terraform Cloudで始めるおひとりさまOrganizationsのすゝめ
handy
2
190
クォータ監視、AWS Organizations環境でも楽勝です✌️
iwamot
PRO
1
340
【Oracle Cloud ウェビナー】ご希望のクラウドでOracle Databaseを実行〜マルチクラウド・ソリューション徹底解説〜
oracle4engineer
PRO
1
110
React ABC Questions
hirotomoyamada
0
540
Amazon CloudWatch を使って NW 監視を行うには
o11yfes2023
0
180
バックオフィス向け toB SaaS バクラクにおけるレコメンド技術活用 / recommender-systems-in-layerx-bakuraku
yuya4
5
570
Databricksで完全履修!オールインワンレイクハウスは実在した!
akuwano
0
110
品質文化を支える小さいクロスファンクショナルなチーム / Cross-functional teams fostering quality culture
toma_sm
0
150
PostgreSQL Log File Mastery: Optimizing Database Performance Through Advanced Log Analysis
shiviyer007
PRO
0
130
watsonx.data上のベクトル・データベース Milvusを見てみよう/20250418-milvus-dojo
mayumihirano
0
120
日経電子版 for Android の技術的課題と取り組み(令和最新版)/android-20250423
nikkei_engineer_recruiting
1
460

Featured

See All Featured
Building Better People: How to give real-time feedback that sticks.
wjessup
367
19k
GitHub's CSS Performance
jonrohan
1030
460k
How STYLIGHT went responsive
nonsquared
99
5.5k
Learning to Love Humans: Emotional Interface Design
aarron
273
40k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
13
1.4k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
656
60k
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
PRO
19
1.2k
A Tale of Four Properties
chriscoyier
158
23k
It's Worth the Effort
3n
184
28k
BBQ
matthewcrist
88
9.6k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
What's in a price? How to price your products and services
michaelherold
245
12k

Transcript

  1. Authorization no Laravel 5.1

  2. Hello! Programador Desenvolvedor web WebDesigner wannabe Leroy Merlin (Laravel) Sempre

    mais http://zizaco.net Luiz Fernando / Zizaco

  3. ACL

  4. 308 mil Instalações do Entrust

  5. 308 mil Instalações do Entrust 449 mil Instalações do Sentry

    12% Do total de instalações do Laravel

  6. Taylor Otwell

  7. O que é Laravel? "A framework is a set of

    classes (code) that embodies an abstract design for solutions to a family of related problems." - Brian Foote

  8. O que é Laravel? A B C

  9. O que é Laravel? A B C

  10. https://laravel-news.com/2015/08/laravel-5-1-11-released-now-with-authorization/

  11. Laravel's (5.1.11) Authorization

  12. Gate (Portão)

  13. Gate::allows('edit-post', $post); // true | false @can('edit-post', $post) ... @else

    ... @endcan Gate::forUser($user)->denies('edit-post', $post); // true | false

  14. $gate->allows('edit-post', $post); // true | false @can('edit-post', $post) ... @else

    ... @endcan $user->can('edit-post', $post); // true | false

  15. Ability Gate Polices (Capacidade) (Política) (Portão)

  16. ( Live Coding )

  17. Ability Gate Polices

  18. ( Live Coding )

  19. ... protected $abilities = []; protected $policies = []; function

    ($user, ...$params) { } Ability Gate class FooBarPolicy { public function ability($user, ...$params) Polices

  20. Ability Gate Polices $gate->define('edit-post', function ($user, $post) { return $post->user_id

    === $user->id; }); $gate->policy('App\Post', 'App\Policies\PostPolicy'); class PostPolicy { public function edit($user, $post) { return $post->user_id === $user->id;

  21. Gate Gate::allows('edit-post', $post); // true | false Gate::allows('edit', $post); //

    true | false @can('edit', $post); ... @can('edit-post', $post) ... @else ... @endcan

  22. Mr. John Doe { Super Admin } [email protected]

  23. Mr. John Doe { Super Admin } [email protected] Roles &

    Permissions ?

  24. Mr. John Doe { Super Admin } [email protected] An Ability

    that check the Database

  25. Ability Gate Polices Role (custom) Permission (custom) (Papel) (Permissão)

  26. ( Live Coding )

  27. Ability Gate Polices Role (custom) Permission (custom)

  28. Ability Gate Polices Role (package) Permission (package) Entrust v2.0?

  29. Mr. John Doe { Super Admin } [email protected] Perguntas?