Model Policies and Admin
If Im restricting access to the admin to a few select users using canAccessFilament(), do I need to put additional checks on the model policies or should I just return true for most of them? Right now I am simply checking their access on the model with that same canAcccessFilament(), but not sure if thats overkill. Im simply doing it in __construct, assigning it to a variable, and checking returning that at view, create, etc.
3 Replies
To me it is completely up to you, and your use case with what needs restricting. I've just been restricting access based on the canAccessFilament and email address ending in. Then I have permissions for their relative permissions within the model policy.
@toeknee_iom well im pretty much checking the same thing at two different locations, which im starting to think is a bit moot.
you can probably just delete the model policies