irisit/lmod-authz

Auth & Authorization system

Authz Module

Documentation du module d'authentification et d'authorisation, _(*1)

Fonctionnalités

Guest

• Sign up ✓
• Sign in ✓
• Forgot password ✓
• Reset password ✓

User

• Edit account information ✓
• Edit account password ✓

Admin

• List of users -- Create user ✓ -- Edit user ✓ -- Enable / Disable user -- Send password on new user ✓ -- Assign role to user ✓, _(*2)

• List of permissions -- Parse from source file ✓ -- Edit descriptions, _(*3)

• List of roles -- Create role -- Edit role --- Assign permissions to role, _(*4)

Install

Begin by installing this package through Composer. Edit your project's composer.json file to require laravelcollective/html., _(*5)

composer require "laravelcollective/html":"^5.4.0", _(*6)

Next, add your new provider to the providers array of config/app.php:, _(*7)

  'providers' => [
    // ...
    Collective\Html\HtmlServiceProvider::class,
    Irisit\Authz\AuthzServiceProvider::class,
    // ...
  ],

Finally, add two class aliases to the aliases array of config/app.php:, _(*8)

  'aliases' => [
    // ...
      'Form' => Collective\Html\FormFacade::class,
      'Html' => Collective\Html\HtmlFacade::class,
    // ...
  ],

Replace all the in the App\User::class, _(*9)

<?php

namespace App;

use Illuminate\Notifications\Notifiable;
use Irisit\Authz\Models\BaseUser as Authenticatable;

class User extends Authenticatable
{
    use Notifiable;

    /**
     * The attributes that are mass assignable.
     *
     * @var array
     */
    protected $fillable = [
        'firstname',
        'lastname',
        'email',
        'password',
        'role_id'
    ];

    /**
     * The attributes that should be hidden for arrays.
     *
     * @var array
     */
    protected $hidden = [
        'password', 'remember_token',
    ];
}

Replace in migrations the name attribute by, _(*10)

$table->string('firstname');
$table->string('lastname'); 

Replace the line in App\Http\Kernel.php, _(*11)

'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,, _(*12)

by, _(*13)

'guest' => \Irisit\Authz\Http\Middleware\RedirectIfAuthenticated::class,, _(*14)

And add at the end ( after guest ), _(*15)

'role' => \Irisit\Authz\Http\Middleware\RedirectIfNotRole::class,, _(*16)

so you can use the middleware 'role' to protect a route or a group like this middleware => 'role:admin,manager', _(*17)

Run, _(*18)

php artisan db:seed --class=Irisit\Authz\Database\Seeds\DatabaseSeeder, _(*19)

Add to config/filesystem.php, _(*20)

        'base' => [
            'driver' => 'local',
            'root' => base_path() . DIRECTORY_SEPARATOR,
        ],

Add this to app/Exceptions/Handler.php, _(*21)

/**
 * @override
 * @param \Illuminate\Http\Request $request
 * @param AuthenticationException $exception
 * @return \Illuminate\Http\JsonResponse|\Illuminate\Http\RedirectResponse|\Illuminate\Http\Response
 */
protected function unauthenticated($request, AuthenticationException $exception)
{
    return $request->expectsJson()
        ? response()->json(['message' => 'Unauthenticated.'], 401)
        : redirect()->guest(route('authz.get_login'));
}

And run php artisan vendor:publish --provider="Irisit\Authz\AuthzServiceProvider" to get the configuration file and the seeder file, _(*22)

For the seeder add $this->call(RoleTableSeeder::class); to the /database/seeders/DatabaseSeeder.php, _(*23)