3.2 documentation

Platform

Core Components

Optional Components

Auth Component

Latest Stable Version Total Downloads MIT License

Auth Component extends the functionality of Illuminate\Auth with the extra functionality to retrieve users' role. This is important when we want to use ACL to manage application Access Control List (ACL).

  1. Version Compatibility
  2. Installation
  3. Configuration
  4. Usage
  5. Change Log

Version Compatibility

Laravel Auth
4.0.x 2.0.x
4.1.x 2.1.x
4.2.x 2.2.x
5.0.x 3.0.x
5.1.x 3.1.x
5.2.x 3.2.x@dev

Installation

To install through composer, simply put the following in your composer.json file:

{
    "require": {
        "orchestra/auth": "~3.0"
    }
}

And then run composer install from the terminal.

Quick Installation

Above installation can also be simplify by using the following command:

composer require "orchestra/auth=~3.0"

Configuration

Next add the service provider in config/app.php.

'providers' => [

    // ...
    # Remove 'Illuminate\Auth\AuthServiceProvider'
    # and add 'Orchestra\Auth\AuthServiceProvider'

    Orchestra\Auth\AuthServiceProvider::class,
    Orchestra\Authorization\AuthorizationServiceProvider::class,
    Orchestra\Memory\MemoryServiceProvider::class,

    Orchestra\Auth\CommandServiceProvider::class,
    Orchestra\Memory\CommandServiceProvider::class,
],

Orchestra\Auth\AuthServiceProvider should replace Illuminate\Auth\AuthServiceProvider.

Aliases

To make development easier, you could add Orchestra\Support\Facades\ACL alias for easier reference:

'aliases' => [

    'ACL' => Orchestra\Support\Facades\ACL::class,

],

Migrations

Before we can start using Auth Component, please run the following:

php artisan auth:migrate

The command utility is enabled via Orchestra\Auth\CommandServiceProvider.

Optionally you can enable Memory Component to use it with ACL, please run the following:

php artisan memory:migrate

The command utility is enabled via Orchestra\Memory\CommandServiceProvider.

Usage

Essentially, the Auth class offered by Laravel is already good enough for normal usage. Orchestra Platform only extends the default operation and allow a user to be link with one or many roles.

  1. Retrieving Roles
  2. Checking Roles
  3. Setup Custom Roles Relationship

Retrieving Roles

Retrieve user's roles is as simple as:

$roles = Auth::roles();

Checking Roles

Check if user has all of the following roles.

if (Auth::is(['admin', 'editor'])) {
    echo "Is an admin and editor";
}

Check if user is any of the following roles.

if (Auth::isAny(['member', 'admin'])) {
    echo "Is a member or admin";
}

Check if user is not of the following roles.

if (Auth::isNot(['admin', 'editor'])) {
    echo "Isn't an admin and editor";
}

Check if user has none any of the following roles.

if (Auth::isNotAny(['member', 'admin'])) {
    echo "Isn't a member or admin";
}

Setup Custom Roles Relationship

This would allow better configuration over convertion control for your application (Laravel).

An example setup code would be:

Auth::setup(function ($user, $roles) {
    // If user is not logged in.
    if (is_null($user)) {
        return $roles;
    }

    if ($user->is_admin) {
        $roles = ['Administrator'];
    } else {
        $roles = ['Member'];
    }

    return $roles;
});

For Orchestra Platform, the listener are automatically handled in Orchestra\Foundation\Bootstrap\UserAccessPolicy and the above code shouldn't be used!