Spatie Laravel Permission – Role and permission management

Spatie Laravel Permission is a powerful package that enables role and permission management in Laravel applications. It provides a straightforward way to handle user roles and permissions, making it easy to control access to various parts of your application based on user roles.

Key Features of Spatie Laravel Permission:

1. Role and Permission Management: Easily create and manage roles and permissions.
2. Middleware for Access Control: Provides middleware to restrict access to routes based on user roles and permissions.
3. Eloquent Models: Uses Eloquent models to manage roles and permissions, allowing for easy querying and relationship management.
4. Blade Directives: Includes Blade directives for checking roles and permissions directly in your views.
5. Customizable: Highly customizable, allowing you to define your own roles and permissions as needed.

Installation

To install and set up Spatie Laravel Permission, follow these steps:

1. Install the Package: Use Composer to require the package:
   
   composer require spatie/laravel-permission

   1	composer require spatie/laravel-permission

2. Publish the Migration and Config Files: Publish the migration files and the configuration file:
   
   php artisan vendor:publish --provider="Spatie\Permission\PermissionServiceProvider"

   1	php artisan vendor:publish --provider="Spatie\Permission\PermissionServiceProvider"

3. Run Migrations: Run the migrations to create the necessary tables for roles and permissions:
   
   php artisan migrate

   1	php artisan migrate

4. Add the HasRoles Trait: In your User model (app/Models/User.php), include the HasRoles trait:
   
   use Spatie\Permission\Traits\HasRoles; class User extends Authenticatable { use HasRoles; }

   1 2 3 4 5 6

   use Spatie\Permission\Traits\HasRoles;   class User extends Authenticatable {     use HasRoles; }

Managing Roles and Permissions

1. Creating Roles and Permissions:

You can create roles and permissions using the provided Eloquent models.

• Creating a Role:
  
  use Spatie\Permission\Models\Role; Role::create(['name' => 'admin']);

  1 2 3

  use Spatie\Permission\Models\Role;   Role::create(['name' => 'admin']);

• Creating a Permission:
  
  use Spatie\Permission\Models\Permission; Permission::create(['name' => 'edit articles']);

  1 2 3

  use Spatie\Permission\Models\Permission;   Permission::create(['name' => 'edit articles']);

2. Assigning Roles and Permissions:

Once you’ve created roles and permissions, you can assign them to users.

• Assigning a Role to a User:
  
  $user->assignRole('admin');

  1	$user->assignRole('admin');

• Assigning a Permission to a Role:
  
  $role = Role::findByName('admin'); $role->givePermissionTo('edit articles');

  1 2	$role = Role::findByName('admin'); $role->givePermissionTo('edit articles');

• Assigning a Permission Directly to a User:
  
  $user->givePermissionTo('edit articles');

  1	$user->givePermissionTo('edit articles');

3. Checking Roles and Permissions:

You can easily check if a user has a specific role or permission.

• Check if a User has a Role:
  
  if ($user->hasRole('admin')) { // The user is an admin }

  1 2 3

  if ($user->hasRole('admin')) {     // The user is an admin }

• Check if a User has a Permission:
  
  if ($user->can('edit articles')) { // The user can edit articles }

  1 2 3

  if ($user->can('edit articles')) {     // The user can edit articles }

Using Middleware

You can protect your routes by using middleware provided by the package. You can restrict access to specific roles or permissions.

1. Protecting Routes with Roles:

2. Protecting Routes with Permissions:

Blade Directives

Spatie Laravel Permission also provides Blade directives to check for roles and permissions directly in your views.

• Check for a Role:
  
  @role('admin') <p>You are an admin!</p> @endrole

  1 2 3

  @role('admin')     <p>You are an admin!</p> @endrole

• Check for a Permission:
  
  @can('edit articles') <p>You can edit articles!</p> @endcan

  1 2 3

  @can('edit articles')     <p>You can edit articles!</p> @endcan

Summary

• Installation: Quick and easy to set up with Composer and migrations.
• Role and Permission Management: Create, assign, and check roles and permissions using simple Eloquent methods.
• Middleware: Protect routes based on roles and permissions.
• Blade Integration: Use built-in directives for easy role and permission checks in views.

Conclusion

Spatie Laravel Permission is an excellent choice for managing roles and permissions in Laravel applications. It provides a clean API and integrates seamlessly with Laravel’s existing features, making it a powerful tool for access control.

 

1. Laravel Breeze – Simple authentication starter kit
2. Laravel Jetstream – Scaffolding for Laravel apps
3. Laravel Passport – API authentication via OAuth2
4. Laravel Sanctum – Simple API authentication
5. Spatie Laravel Permission – Role and permission management
6. Laravel Cashier – Subscription billing with Stripe
7. Laravel Scout – Full-text search using Algolia
8. Laravel Socialite – OAuth authentication (Google, Facebook, etc.)
9. Laravel Excel – Excel import and export for Laravel
10. Laravel Horizon – Redis queues monitoring
11. Laravel Nova – Admin panel for Laravel
12. Laravel Fortify – Backend authentication for Laravel
13. Laravel Vapor – Serverless deployment on AWS
14. Laravel Telescope – Debugging assistant for Laravel
15. Laravel Dusk – Browser testing
16. Laravel Mix – API for compiling assets
17. Spatie Laravel Backup – Backup management
18. Laravel Livewire – Building dynamic UIs
19. Spatie Laravel Media Library – Manage media uploads
20. Laravel Excel – Excel spreadsheet handling
21. Laravel Debugbar – Debug tool for Laravel
22. Laravel WebSockets – Real-time communication
23. Spatie Laravel Sitemap – Generate sitemaps
24. Laravel Spark – SaaS scaffolding
25. Laravel Envoy – Task runner for deployment
26. Spatie Laravel Translatable – Multilingual model support
27. Laravel Backpack – Admin panel
28. Laravel AdminLTE – Admin interface template
29. Laravel Collective Forms & HTML – Simplified form and HTML generation
30. Spatie Laravel Analytics – Google Analytics integration
31. Laravel Eloquent Sluggable – Automatically create slugs
32. Laravel Charts – Chart integration
33. Laravel Auditing – Track changes in models
34. Laravel JWT Auth – JSON Web Token authentication
35. Laravel Queue Monitor – Monitor job queues
36. Spatie Laravel Query Builder – Filter, sort, and include relationships in Eloquent queries
37. Laravel Datatables – jQuery Datatables API
38. Laravel Localization – Multilingual support for views and routes
39. Laravel Acl Manager – Access control list manager
40. Laravel Activity Log – Record activity in your app
41. Laravel Roles – Role-based access control
42. Spatie Laravel Tags – Tagging models
43. Laravel Installer – CLI installer for Laravel
44. Laravel Breadcrumbs – Generate breadcrumbs in Laravel
45. Laravel Mailgun – Mailgun integration for Laravel
46. Laravel Trustup Model History – Store model change history
47. Laravel Deployer – Deployment automation tool
48. Laravel Auth – Custom authentication guards
49. Laravel CORS – Cross-Origin Resource Sharing (CORS) support
50. Laravel Notifications – Send notifications through multiple channels
51. Spatie Laravel Http Logger – Log HTTP requests
52. Laravel Permission Manager – Manage permissions easily
53. Laravel Stubs – Customize default stubs in Laravel
54. Laravel Fast Excel – Speed up Excel exports
55. Laravel Image – Image processing
56. Spatie Laravel Backup Server – Centralize backups for Laravel apps
57. Laravel Forge API – Manage servers through the Forge API
58. Laravel Blade SVG – Use SVGs in Blade templates
59. Laravel Ban – Ban/unban users from your application
60. Laravel API Response – Standardize API responses
61. Laravel SEO – Manage SEO meta tags
62. Laravel Settings – Store and retrieve settings
63. Laravel DOMPDF – Generate PDFs
64. Laravel Turbo – Full-stack framework for building modern web apps
65. Spatie Laravel Event Sourcing – Event sourcing implementation
66. Laravel Jetstream Inertia – Jetstream’s Inertia.js integration
67. Laravel Envoy Tasks – Task automation
68. Laravel Likeable – Like/dislike functionality
69. Laravel GeoIP – Determine visitor’s geographic location
70. Laravel Country State City – Dropdowns for country, state, and city
71. Laravel Hashids – Generate short unique hashes
72. Laravel Repository – Repository pattern for Laravel
73. Laravel UUID – UUID generation for models
74. Spatie Laravel Medialibrary Pro – Enhanced media management
75. Laravel Queue Monitor – Monitor Laravel job queues
76. Laravel User Activity – Monitor user activity
77. Laravel DB Snapshots – Create database snapshots
78. Laravel Twilio – Twilio integration
79. Laravel Roles – Role-based permission handling
80. Laravel Translatable – Add translations to Eloquent models
81. Laravel Teamwork – Manage teams in multi-tenant apps
82. Laravel Full Text Search – Add full-text search to Laravel models
83. Laravel File Manager – File and media management
84. Laravel User Timezones – Automatically detect user time zones
85. Laravel ChartsJS – Render charts with ChartsJS
86. Laravel Stripe – Stripe API integration
87. Laravel PDF Generator – PDF generation
88. Laravel Elasticsearch – Elasticsearch integration
89. Laravel Simple Qrcode – Generate QR codes
90. Laravel Timezone – Manage timezones and conversions
91. Laravel Collective API – API management for Laravel
92. Laravel Rest API Boilerplate – REST API starter kit
93. Laravel Multi Auth – Multi-authentication functionality
94. Laravel Voyager – Admin panel for Laravel
95. Laravel Voyager Database – Database manager for Voyager
96. Laravel Categories – Handle categories for models
97. Laravel Multitenancy – Multi-tenancy implementation
98. Laravel Access Control – Advanced access control for users
99. Laravel Menus – Menu management
100. Laravel Translatable Routes – Multilingual route handling