Let’s talk about the permission management expansion package in Laravel

This article brings you relevant knowledge about laravel, which mainly introduces the issues related to the expansion package of permission permission management. Let’s take a look at it together. I hope it will be helpful to everyone.

[Related recommendations: laravel video tutorial]

What is a multi-user role

For example, For example, the forum we usually use

Webmaster------has the highest authority, and the most important thing is the authority to manage users

Administrator-----For some The management of articles will not have a major impact on the website

vip ----- Have download permission for some resources

Ordinary users ---- can only make simple edits Additions, deletions, modifications, comments, etc. of your own articles

Visitors ---- can only perform basic browsing

Create tables

---

• roles ------- Role information: Webmaster, etc.
• permissions ------- Permission information: Management content, etc.
• model_has_roles ------- Role corresponding to the model = Role corresponding to the user
• role_has_permissions ------- Permission corresponding to the role = What permissions does the role have
• model_has_permissions ----- -- Model corresponding permissions = Users have permissions

Let’s sort out the relationships

##Permissions (permissions) and Role (roles), one permission may be owned by multiple roles, and one role may have multiple permissions. Association relationship: many-to-many (role_has_permissions)

User and Permissions One-to-many (model_has_permissions)

User and Role One-to-many (model_has_roles)

By times Said, the relationship is clear, when the user has what role or what permissions, the corresponding operation is performed

1. Install the extension package

composer require "spatie/laravel-permission:~2.7"

Generate database migration file:

php artisan vendor:publish --provider="Spatie\Permission\PermissionServiceProvider" --tag="migrations"

You can see related table information in the migration directory and perform database migration

php artisan migrate

Generate configuration information:

php artisan vendor:publish --provider="Spatie\Permission\PermissionServiceProvider" --tag="config"

Load under the User model

.....
use Spatie\Permission\Traits\HasRoles;  // use

class User extends Authenticatable
{

    use HasRoles;  // 加载角色相关信息
    .....

Create roles and users

use Spatie\Permission\Models\Role;
use Spatie\Permission\Models\Permission;

.....
$role = Role::create(['name' => 'writer']);  // 创建角色
$permission = Permission::create(['name' => 'edit articles']);// 创建权限

Use

---

Add permissions for users

$user->givePermissionTo('edit articles');

Add roles for users

$user->assignRole('writer');

$user->assignRole(['writer', 'admin']);

Delete permissions for users

$user->revokePermissionTo('edit articles');

Add permissions for roles

$role->givePermissionTo('edit articles');

Add permissions for roles Permissions

$role->givePermissionTo('edit articles');

Revoke a permission and add a new one

$user->syncPermissions(['edit articles', 'delete articles']);

Get the current user's role collection

$user->getRoleNames();

Synchronize multiple roles to permissions

$role->syncPermissions($permissions); //  @param array $permissions

$permission->syncRoles($roles);

Remove permissions from a role

$role->revokePermissionTo($permission);
$permission->removeRole($role);

Get the current user's permission list

$permissions = $user->permissions;

Get all the user's permissions, or direct permissions (odel_has_permissions), or get it from the role, or get it from both

$permissions = $user->getDirectPermissions();
$permissions = $user->getPermissionsViaRoles();
$permissions = $user->getAllPermissions();

Get the user's role collection collection

$roles = $user->getRoleNames(); // Returns a collection

Returns users with the specified role | Returns only users with the role 'writer'

$users = User::role('writer')->get(); //

Returns users with the specified permissions

$users = User::permission('edit articles')->get();

What roles does the user have

$user->hasRole('writer');

Verification class

---

Check whether there is a certain permission

$user->hasPermissionTo('edit articles');

$user->can('edit articles');

Check whether there is a certain role | Or column

$user->hasRole('writer');

$user->hasAnyRole(Role::all());

$user->hasAllRoles(Role::all());

pass the id value to determine whether there is a certain permission

$user->hasPermissionTo('1');
$user->hasPermissionTo(Permission::find(1)->id);
$user->hasPermissionTo($somePermission->id);

Whether it has a set of permissions

$user->hasAnyPermission(['edit articles', 'publish articles', 'unpublish articles']);

Check whether a role has certain permissions | Delete a certain These permissions

$role->hasPermissionTo('edit articles'); 

$role->revokePermissionTo('edit articles'); // 删除

template uses

@role('writer')
    I am a writer!
@else
    I am not a writer...
@endrole

------------------------

@hasrole('writer')
    I am a writer!
@else
    I am not a writer...
@endhasrole

------------------------

@can('edit articles') // 拥有某个权限 可执行操作
//
@endcan

---

data to fill

use Illuminate\Database\Seeder;
use Spatie\Permission\Models\Role;
use Spatie\Permission\Models\Permission;

class RolesAndPermissionsSeeder extends Seeder
{
    public function run()
    {
        // Reset cached roles and permissions
        app()['cache']->forget('spatie.permission.cache');

        // create permissions
        Permission::create(['name' => 'edit articles']);
        Permission::create(['name' => 'delete articles']);
        Permission::create(['name' => 'publish articles']);
        Permission::create(['name' => 'unpublish articles']);

        // create roles and assign created permissions

        $role = Role::create(['name' => 'writer']);
        $role->givePermissionTo('edit articles');

        $role = Role::create(['name' => 'moderator']);
        $role->givePermissionTo(['publish articles', 'unpublish articles']);

        $role = Role::create(['name' => 'super-admin']);
        $role->givePermissionTo(Permission::all());
    }
}

Tip: If in the database To modify the permission-related information table, you must use the method of clearing the cache

// 命令删除
php artisan cache:forget spatie.permission.cache  

app()['cache']->forget('spatie.permission.cache');

[Related recommendations:

laravel video tutorial]

The above is the detailed content of Let’s talk about the permission management expansion package in Laravel. For more information, please follow other related articles on the PHP Chinese website!