3.3 documentation

Latest Stable Version Total Downloads MIT License

Auth Component extends the functionality of Illuminate\Auth with the extra functionality to retrieve users' role. This is important when we want to use ACL to manage application Access Control List (ACL).

  1. Version Compatibility
  2. Installation
  3. Configuration
  4. Usage
  5. Change Log

Version Compatibility

Laravel Auth
4.0.x 2.0.x
4.1.x 2.1.x
4.2.x 2.2.x
5.0.x 3.0.x
5.1.x 3.1.x
5.2.x [email protected]


To install through composer, simply put the following in your composer.json file:

    "require": {
        "orchestra/auth": "~3.0"

And then run composer install from the terminal.

Quick Installation

Above installation can also be simplify by using the following command:

composer require "orchestra/auth=~3.0"


Next add the service provider in config/app.php.

'providers' => [

    // ...
    # Remove 'Illuminate\Auth\AuthServiceProvider'
    # and add 'Orchestra\Auth\AuthServiceProvider'



Orchestra\Auth\AuthServiceProvider should replace Illuminate\Auth\AuthServiceProvider.


To make development easier, you could add Orchestra\Support\Facades\ACL alias for easier reference:

'aliases' => [

    'ACL' => Orchestra\Support\Facades\ACL::class,



Before we can start using Auth Component, please run the following:

php artisan auth:migrate

The command utility is enabled via Orchestra\Auth\CommandServiceProvider.

Optionally you can enable Memory Component to use it with ACL, please run the following:

php artisan memory:migrate

The command utility is enabled via Orchestra\Memory\CommandServiceProvider.


Essentially, the Auth class offered by Laravel is already good enough for normal usage. Orchestra Platform only extends the default operation and allow a user to be link with one or many roles.

  1. Retrieving Roles
  2. Checking Roles
  3. Setup Custom Roles Relationship

Retrieving Roles

Retrieve user's roles is as simple as:

$roles = Auth::roles();

Checking Roles

Check if user has all of the following roles.

if (Auth::is(['admin', 'editor'])) {
    echo "Is an admin and editor";

Check if user is any of the following roles.

if (Auth::isAny(['member', 'admin'])) {
    echo "Is a member or admin";

Check if user is not of the following roles.

if (Auth::isNot(['admin', 'editor'])) {
    echo "Isn't an admin and editor";

Check if user has none any of the following roles.

if (Auth::isNotAny(['member', 'admin'])) {
    echo "Isn't a member or admin";

Setup Custom Roles Relationship

This would allow better configuration over convertion control for your application (Laravel).

An example setup code would be:

Auth::setup(function ($user, $roles) {
    // If user is not logged in.
    if (is_null($user)) {
        return $roles;

    if ($user->is_admin) {
        $roles = ['Administrator'];
    } else {
        $roles = ['Member'];

    return $roles;

For Orchestra Platform, the listener are automatically handled in Orchestra\Foundation\Bootstrap\UserAccessPolicy and the above code shouldn't be used!