F
Filament5mo ago
Proculair B.V.

Authorization in RelationManager not allowing to use different model

Hi, I have a UserResource with a TokenRelationManager. The tokens use model Laravel\Sanctum\PersonalAccessToken. I have the following header action on the relation manager: 
->headerActions([
    Tables\Actions\CreateAction::make()
        ->label('Token Aanmaken')
        ->authorize('createToken', User::class)
        ->using(function (array $data, string $model): PersonalAccessToken {
            /** @var User */
            $user = $this->getOwnerRecord();

            $token = $user->createToken(
                name: $data['name'],
                abilities: $data['abilities'],
                expiresAt: $data['expires_at']
            );

            Session::flash('token', $token->plainTextToken);

            return $token->accessToken;
        })
        ->successNotification(function (): Notification {
            $token = Session::pull('token');
            [$id, $token] = explode('|', $token, 2);

            $this->js("window.navigator.clipboard.writeText('{$token}')");

            return Notification::make()
                ->title('Token Aangemaakt!')
                ->body($token)
                ->persistent()
                ->success()
                ->color('success')
                ->icon('heroicon-o-key');
        }),
])
->headerActions([
    Tables\Actions\CreateAction::make()
        ->label('Token Aanmaken')
        ->authorize('createToken', User::class)
        ->using(function (array $data, string $model): PersonalAccessToken {
            /** @var User */
            $user = $this->getOwnerRecord();

            $token = $user->createToken(
                name: $data['name'],
                abilities: $data['abilities'],
                expiresAt: $data['expires_at']
            );

            Session::flash('token', $token->plainTextToken);

            return $token->accessToken;
        })
        ->successNotification(function (): Notification {
            $token = Session::pull('token');
            [$id, $token] = explode('|', $token, 2);

            $this->js("window.navigator.clipboard.writeText('{$token}')");

            return Notification::make()
                ->title('Token Aangemaakt!')
                ->body($token)
                ->persistent()
                ->success()
                ->color('success')
                ->icon('heroicon-o-key');
        }),
])
As you can see in ->authorize('createToken', User::class) I want to trigget the createToken method on the UserPolicy. Because of this code in the InteractsWithRecord trait the model of the relation manager gets prepended as an argument: 
protected function parseAuthorizationArguments(array $arguments): array
    {
        if ($record = $this->getRecord()) {
            array_unshift($arguments, $record);
        } elseif ($model = $this->getModel()) {
            array_unshift($arguments, $model);
        }

        return $arguments;
    }
protected function parseAuthorizationArguments(array $arguments): array
    {
        if ($record = $this->getRecord()) {
            array_unshift($arguments, $record);
        } elseif ($model = $this->getModel()) {
            array_unshift($arguments, $model);
        }

        return $arguments;
    }
How could I trigger the authorization method to use the UserPolicy?
Solution:
I solved this issue by using: 
->authorize('createToken', $this->getOwnerRecord())
->authorize('createToken', $this->getOwnerRecord())
...
Jump to solution
1 Reply
Solution
Proculair B.V.
Proculair B.V.5mo ago
I solved this issue by using: 
->authorize('createToken', $this->getOwnerRecord())
->authorize('createToken', $this->getOwnerRecord())
and 
Gate::policy(PersonalAccessToken::class, UserPolicy::class);
Gate::policy(PersonalAccessToken::class, UserPolicy::class);
I do not know if this is the best possible solution, but it works 🤷‍♂️
Want results from more Discord servers?
Add your server