Topics

Filament•17mo ago

Model Policies and Admin

If Im restricting access to the admin to a few select users using canAccessFilament(), do I need to put additional checks on the model policies or should I just return true for most of them? Right now I am simply checking their access on the model with that same canAcccessFilament(), but not sure if thats overkill. Im simply doing it in __construct, assigning it to a variable, and checking returning that at view, create, etc.

3 Replies

toeknee•17mo ago

To me it is completely up to you, and your use case with what needs restricting. I've just been restricting access based on the canAccessFilament and email address ending in. Then I have permissions for their relative permissions within the model policy.

Mark Chaney•17mo ago

@toeknee_iom well im pretty much checking the same thing at two different locations, which im starting to think is a bit moot.

Dan Harrin•17mo ago

you can probably just delete the model policies

Filament is a collection of beautiful full-stack components for Laravel.You can get help using it on our Discord.

16KMembers

View on Discord

Want results from more Discord servers?

Add your server

More Posts

Error when prefilling from query string in resource with persistTabInQueryString enabledHi, I get the following error when persisting tabs in query string enabled when creating a form or u Use createOptionForm and createOptionAction in Radio FieldHow we can use createOptionForm and createOptionAction in Radio Field?How to trigger table action outside table with AlpineJS?I have following table action. How to trigger it (and pass record id) from menu.blade(not filament a Is it possible to use the Table builder without a Query?I'd want to use the table builder without using a Query. I have my own data defined as an array or r How to use Split ComponentTried like this: return $table ->schema([ Split::make([ Table Actions Custom ColorIs there any way we can change this button to custom color? Example: I want to change the button co Filament form save ignores eloquent updateOrCreate?As the title says, I'm trying laravel `updateOrCreate` eloquent as a way to detect duplicates on dat Change the ColumnTag colorIs there a way to customize the color for the ColumnTag?