Hello there I am working on a project in Laravel in which i need to assign permission to each user so that i could verify on each blade file or controller function to check whether the current user has the permission to perform this. Moreover, the side nav links are also generated using these permissions dynamically. I created two tables:

1: User => [ID, Name .....]
2: Permissions => [ID, Name, user_id(fk)]

To solve this problem, i have stored all the permissions of users in session at the time of login. So that i can verify all permissions on each page and generate links fetching from session.

Is that good approach or there is any better solution for this

CodePudding user response：

It would be good if you had share more code but i can see what you are want to archive. Firstly you dont need to store in the Session because you have already a relation between user Object and Permission. Add to your User model this lines of code:

public function permissions() {
    return $this->belongsTo(User::class);
}

Then you have access in your blade or controller to the permission. Small example in the controller:

$user = User::find(1);
dd($user->permissions);

// you can write a condition to check if user has Permission etc.

CodePudding user response：

Yes you can store this is the session. But the more better option will be to get the permission through relation object like

user::find(1)->permissions()