F
Filament8mo ago
Stormageddon, Dark Lord of All

When to move from different panels to user permissions.

I have the following situation: there is an invoices resource. admins can view and edit all invoices users can view and create invoices assingned to them managers view all invoices but not create new ones. my current implementation is to create a new panel for every user type, I am wondering if implementing user roles is worth it at the moment or should I stick with the current implementation. If I should go with user permissions what plugin should I use / does filament have a permission system of it's own?
4 Replies
ModestasV
ModestasV8mo ago
Filament uses policies for most of the actions. If it's not there, you can usually add it via ->hidden() attribute on a lot of things. There is Shield plugin that seems to be quite popular. As for when to move into different panels - that depends. In my eyes, I would only move to different panels if the forms differ. For example, it's not just limited who can do what with a resource, but which resources are managed by who. In your case, it seems like you focus on invoices and specific actions around them, so I'm not sure if it's the best option to split yet.
Stormageddon, Dark Lord of All
Stormageddon, Dark Lord of All8mo ago
the main difference between the invoice resource for admins and regular users is this line: 
  ->modifyQueryUsing(fn (Builder $query) => $query->where('user_id', 'is', Auth::id()))
  ->modifyQueryUsing(fn (Builder $query) => $query->where('user_id', 'is', Auth::id()))
now that I think about it I could add a condition to apply this only if the logged in user is not an admin, but as the app grows I am sure I'll need to add more roles so this conditional will grow..
ModestasV
ModestasV8mo ago
You can add scopes for that, but I would not worry about this until you see the need. Unless you already know that it's going to be there 100% - then probably implementing something to manage it - would be beneficial
Stormageddon, Dark Lord of All
Stormageddon, Dark Lord of All8mo ago
sounds good, thanks for the help
Want results from more Discord servers?
Add your server
More Posts
how to pass custom data in resource create methodi am stuck . cant find how to pass custom data in resource create methodmutate relation data before savingHey there, How can i mutate relation data before editing or creating parent record? for example i haHow to use Filament Builder and Blocks in Front endI have created Page model with Page resource. For page content, I used Filament Builder and blocks. SelectColumn::afterStateUpdated does not exist.I am trying to dispatch a function to update different livewire component after select state updatedSearchable Select Field - display 2 values in optionsIs it possible to have a select field which shows two data items in the options list. For context IUpgraded to v3 icon-button errorHello i am having this error i just upgraded to v3 also did the livewire v3 update. Anyone know thiswhat’s the possible issueI’ve tried everything, reinstalling laravel, composer and filament but it keeps showing me the forbiselect not getting live() inputI am trying to use reactive (live() inputs inside a wizard form and in it I have a repeater , for sobeforeStateUpdated is not working on Tables\Columns\ToggleColumnTrying to update the `$state` before update. Used following code: `Tables\Columns\ToggleColumn::makupgrading from v2 to v3 but requires composer not higher than v2Hello as you can see on the screenshot it only has a v2 version but they don't support v3 is there a