Comments (2)
sagikazarmark
commented on May 18, 2024
Not sure if I am right about that, but you can also set permissions for not just a type of resource, but a specific one with an id as well. You can create a task resource locally and pass the caller's id to it. This way the resource will always have the caller's id which is what you want. However I don't know if the super user permission has a higher order of precedence or not.
from lock.
cegrif01
commented on May 18, 2024
As I was working with Lock today, I realized I was misunderstanding how it worked when I wrote this issue.
Correct me if I'm wrong in my assumptions:
- When using the database driver, the permissions are written to the database based on what we allow in the UserManager class (used in the readme).
- Then we can use Lock::can() to hit the lock_permissions table and check if a user is allowed to perform a certain action. The data that was just written in the previous step is now used to perform the checks underneath the Lock::can() abstraction.
- There's no end to the number of combinations and hierarchies I can build
The lack of restrictions really threw me off at first! It's so simple to build out very complex authentication structures. The more I learn how Lock works, the more impressed I am with it. I'm working on a test project to really understand the ins and outs. I will keep you posted with feedback if I find anything worth reporting on. Thank you for developing this.
from lock.
Related Issues (20)
- Returning all permissions on a caller HOT 4
- Our requirements - how to implement? HOT 9
- group permissions HOT 1
- Why differs the sample implementation of a driver from the laravel lock? HOT 2
- Simplify building a driver example
- Add sync method to easily sync permissions for a resource
- Allowed/Denied caller/role for a resource
- allowed method returns only explicit resource HOT 2
- Flushing drivers
- Add development branch alias to composer
- Add voters HOT 1
- Discussion: tagging stable HOT 1
- Rename clear method to something else? HOT 1
- PhalconDriver assertion failures HOT 3
- How to get all permissions?
- Lock permission clear
- The problem about creating new role and the structure.
- Rename resources to something else
- Abandoned on packagist?
- Schema HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from lock.