orisai/nette-auth

Orisai Auth integration for Nette

Maintainers

Details

github.com/orisai/nette-auth

Homepage

Source

Issues

Installs: 8 902

Dependents: 2

Suggesters: 0

Security: 0

Stars: 3

Watchers: 1

Forks: 0

Open Issues: 0

1.1.1 2024-06-21 12:37 UTC

Requires

Requires (Dev)

MPL-2.0 cba9eed5b580a9ae58e3319d543060b2d3bbca9c

authorizationsecurityAuthenticationloginpasswordnetteauthaclUsersPolicypermissionsrbacpasswordsroleaccess-controlabacorisai

This package is auto-updated.

Last update: 2024-10-21 13:21:30 UTC

README

Orisai
Nette Auth

Orisai Auth integration for Nette

📄 Check out our documentation.

💸 If you like Orisai, please make a donation. Thank you! 

namespace App\Admin\Article\View;

use Orisai\Auth\Authentication\Identity;
use Orisai\Auth\Authentication\SimpleFirewall;

final class ArticleEditController
{

	private SimpleFirewall $firewall;

	public function __construct(SimpleFirewall $firewall)
	{
		$this->firewall = $firewall;
	}

	public function run(): void
	{
		if (!$this->firewall->isAllowed('administration.entry')) {
			// Not allowed
		}

		$article = /* get article by ID from request */;

		if (!$this->firewall->isAllowed('article.edit', $article)) {
			// Not allowed
		}

		// Is allowed
	}

}

use App\Core\Article\Article;
use Orisai\Auth\Authorization\Policy;
use Orisai\Auth\Authorization\PolicyContext;

/**
 * @phpstan-implements Policy<Article>
 */
final class ArticleEditPolicy implements Policy
{

	public static function getPrivilege(): string
	{
		return 'article.edit';
	}

	public static function getRequirementsClass(): string
	{
		return Article::class;
	}

	/**
	 * @param Article $requirements
	 */
	public function isAllowed(Identity $identity, object $requirements, PolicyContext $context): bool
	{
		$authorizer = $context->getAuthorizer();

		return $authorizer->hasPrivilege($identity, self::getPrivilege())
			&& $requirements->getAuthor()->getId() === $identity->getId();
	}

}