Hello Artisan,
Today I am coming with a brand new tutorial for you on the topic of laratrust for laravel 8. In this laravel roles and permissions example, I will use laravel laratrus package to control user access. So in this role and permission in laravel 8 tutorial, i will use laratrust pacakge.
I have already created a tutorial on it that was Laravel roles and permissions example without packages. We can control user access and permissions using many packages in Laravel. There are many packages. Spatie and Laratrust are more popular than others.
In this example, I will share with you that how we can manage user roles and permission in laravel using only one custom middleware with Laratrust package. You know that Laratrust is a Laravel package that lets you handle very easily roles and permissions inside your application.
You can read my previous tutorial on laravel roles and permissions example which was without packages. Finished this below tutorial before starting with Laratrust. If you complete my roles and permissions tutorial without package article, then you will easily understand that how laratrust package work and handle user access control in Laravel application.
I will share the source code with you step by step so that you can understand it easily. Check the laratrust package documentation before starting this tutorial:
Recommended : User Roles and Permissions Tutorial in Laravel Without Packages
Let's start our laravel user roles and permissions from scratch:
Step 1 : Download Laravel
To create laratrust for laravel 8, open up your terminal and create a new Laravel project by typing in the following command
composer create-project --prefer-dist laravel/laravel blog
Step 2: Create Auth
We are going to create laravel user roles and permissions with laratrust package so If you are using laravel version 6 then run below command to make auth
composer require laravel/ui --dev
php artisan ui vue --auth
npm install
npm run watch
If you are using below laravel version 6 then run below command to make auth
php artisan make:auth
Step 3: Setup Laratrust
You can install the package using composer:
composer require santigarcor/laratrust
Publish the configuration file:
php artisan vendor:publish --tag="laratrust"
Warning: If this command did not publish any files, chances are, the Laratrust service provider hasn't been registered. Try clearing your configuration cache
Run this command to clear application config cache:
php artisan config:clear
Run the setup command, keep remember that Before running the command go to your config/laratrust.php file and change the values according to your needs.
php artisan laratrust:setup
Dump the autoloader:
composer dump-autoload
And now finally run the migrations:
php artisan migrate
Step 4: Create Seeder
To check user roles and permissions in Laravel, we need some fake dummy data. We will create it using database seeder. So run below command:
php artisan make:seeder RoleSeeder
php artisan make:seeder PermissionSeeder
Now update those both file like below:
Database\Seeders\RoleSeeder.php
namespace Database\Seeders;
use App\Models\Role;
use App\Models\User;
use Illuminate\Database\Seeder;
class RoleSeeder extends Seeder
{
public function run()
{
$roles = [
[
'name' => 'Admin',
'display_name' => 'Admin',
'description' => 'Can access all features!'
],
[
'name' => 'Buyer',
'display_name' => 'Buyer',
'description' => 'Can access limited features!'
],
];
foreach ($roles as $key => $value) {
$role = Role::create([
'name' => $value['name'],
'display_name' => $value['display_name'],
'description' => $value['description']
]);
User::first()->attachRole($role);
}
}
}
Now update permission seeder like below:
Database\Seeders\PermissionSeeder.php
namespace Database\Seeders;
use App\Models\User;
use App\Models\Permission;
use Illuminate\Database\Seeder;
use Illuminate\Support\Facades\Route;
class PermissionSeeder extends Seeder
{
public function run()
{
$permissons = [
[
'name' => 'CheckController@index',
'display_name' => 'Index',
'description' => 'Check'
],
[
'name' => 'CheckController@create',
'display_name' => 'Create',
'description' => 'Check'
],
];
foreach ($permissons as $key => $value) {
$permission = Permission::create([
'name' => $value['name'],
'display_name' => $value['display_name'],
'description' => $value['description']
]);
User::first()->attachPermission($permission);
}
}
}
Now register both seeder in database seeder file like that:
Database\Seeders\DatabaseSeeder.php
namespace Database\Seeders;
use Illuminate\Database\Seeder;
use Database\Seeders\RoleSeeder;
use Database\Seeders\PermissionSeeder;
class DatabaseSeeder extends Seeder
{
/**
* Seed the application's database.
*
* @return void
*/
public function run()
{
\App\Models\User::factory(2)->create();
$this->call(PermissionSeeder::class);
$this->call(RoleSeeder::class);
}
}
Now run the db:seed command to generate some fake data.
php artisan db:seed
After running this command, you will see the following changes in your table like:
users table
roles table
permissions table
role_user table
role_permission table
permission_user table
Step 5: Update User Model
In this step, we have to update User model. So update it like below.
namespace App\Models;
use Illuminate\Contracts\Auth\MustVerifyEmail;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
use Laravel\Sanctum\HasApiTokens;
use Laratrust\Traits\LaratrustUserTrait;
class User extends Authenticatable
{
use LaratrustUserTrait, HasApiTokens, HasFactory, Notifiable;
}
Step 6: Create Middleware
Now we need to create our custom middleware. Using this middleware we have to check user permissions.We will just use this middleware in our route. Our middleware automatically controls user roles and permission in laravel.
Run this below command to create middleware.
php artisan make:middleware HasPermission
Now update this middleware like below:
App\Http\Middleware\HasPermission.php
namespace App\Http\Middleware;
use Closure;
use App\Models\Permission;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Route;
class HasPermission
{
public function handle($request, Closure $next)
{
$_exist_role_user = \DB::table('role_user')
->where('user_id',auth()->id())
->exists();
if( $_exist_role_user ) {
$user_role = \DB::table('role_user')
->where('user_id',auth()->id())
->first();
$controllerAction = class_basename(Route::currentRouteAction());
$permission = false;
$permission_id_id = 0;
$permission_result = Permission::where('name',$controllerAction)
->exists();
$permission_id = Permission::where('name',$controllerAction)
->first();
if(!$permission_result) {
$permission_id_id = 0;
}
else {
$permission_id_id = $permission_id->id;
}
$role_id = $user_role->role_id;
$check_permission = \DB::table('permission_role')
->where('role_id',$role_id)
->where('permission_id',$permission_id_id)
->exists();
if($check_permission) {
$permission = true;
if($permission) {
return $next($request);
}
return abort(403);
}else {
return abort(403);
}
}else {
return 'you are not authorize!';
}
}
}
Now register middleware in your kernel.php file in $routeMiddleware array like below.
App\Http\Kernel.php
protected $routeMiddleware = [
'HasPermission' => \App\Http\Middleware\HasPermission::class,
];
Step 7: Create Route
We need to check some route to check user permission is actually working or not. So let's update.
routes/web.php
use Illuminate\Support\Facades\Route;
use App\Http\Controllers\CheckController;
use App\Http\Controllers\HomeController;
Auth::routes();
Route::middleware(['auth','HasPermission'])->group(function () {
Route::get('/create',[CheckController::class, 'create']);
Route::get('/',[CheckController::class, 'index']);
Route::get('/home', [HomeController::class, 'index'])->name('home');
});
Step 8: Create Controller
We are in the final step before testing our roles and permission in laravel using laratrust packages. So let's create it.
App\Http\Controllers\CheckController.php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Route;
class CheckController extends Controller
{
public function index()
{
return 'Silence is golden!';
}
public function create()
{
return view('welcome');
}
}
Now all are set to go. Now you can check your application users' roles and permissions by visiting this URL after running the server.
php artisan serve
And visit the following url:
Now you can test after login in your system. Hope it can help you.
#laravel #laravel-8x #acl #permission #role #authorization