Home / Questions / 206034
Accepted
Lendy Rodriguez Silva
Asked: 2020-10-20 01:55:46 +0800 CST 2020-10-20 01:55:46 +0800 CST

Modify Policies function

  • 772

I'm trying to modify the Policies function which is currently this:

public function pass(User $user, Product $product)
{
   return $user->id == $product->user_id;
}

Let's see if I explain myself correctly... I have some products that, when trying to access them, check that the iduser 's is the same as the user_idproduct that they are trying to access up to here, everything is perfect, but what I also need is to create some products that are accessible to them by all users without restrictions that all users regardless of their id have access to them. For example, I have thought about using user_id 1it in all products without restriction, but I don't know how to make the function of free access to all products, do you have user_id 1any ideas?

laravel

1 Answers

  1. Best Answer

    I understand that your use case is the following:

    There are products that can be accessed by all users and another group of products that have restricted access based on user_idthe product.

    Based on this I propose two ways.

    mode 1

    That you add a value in the product table that indicates if the product is restrictive for the indicated user.

    1 - Create a migration and add is_restrictedas a boolean (or modify the initial one):

    php artisan make:migration add_is_restricted_column_to_products_table --table=products

    then in AddIsRestrictedColumnToProductsTable.php:

    Schema::table('products', function (Blueprint $table) {
            $table->boolean('is_restricted')->default(true)->after('user_id');
        });

    2 - Run your migration.

    3 - Modify your policy:

    public function pass(User $user, Product $product)
{
    if ($product->is_restricted)
    {
        return $user->id == $product->user_id;
    }
    return true;
}

    mode 2

    That you set the value of user_idin the product table to nullin case this product is accessed by everyone. so, you can compare in your policy:

    public function pass(User $user, Product $product)
{
    if ( ! is_null($product->user_id))
    {
        return $user->id == $product->user_id;
    }
    return true;
}

    You can include an attribute in your product table that determines if that product is accessible by everyone or only by a certain group of users.

    • 1