Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexander2022-03-30 15:01:59
User identification
Alexander, 2022-03-30 15:01:59

How to organize authorization in Laravel?

Tell me, if you use middleware in routes, will this step be enough for security or is it worth checking authorization also through an observer? PS I'm just learning =)
Route::get()->middleware('auth');

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
S
SKEPTIC, 2022-03-30
@pro100chel

Yes, everything is fine.
The main thing is that the logic in this middleware is correct and do not forget to hang this middleware on the routes where this authorization is needed.
The logic itself is simple - checking the session key / token or something else. If there is a division into roles / rights, then check for the sufficiency of the role for the action being performed. All.

Similar questions
R
Roman Revin2012-06-22 10:44:31
Prompt "switch" sessions for chrome? 5Reply
C
cheremushkin2012-07-08 12:23:23
Is the authorization algorithm for Session and Cookies correct? 14Reply
V
Vladislav2015-12-10 11:42:25
Authentication window in Kerio WinRoute? 1Reply
L
LoliDeveloper2021-08-07 10:22:11
What to use for user authorization/authentication on the backend? 3Reply
D
Danil Chekalin2018-04-22 23:56:28
Best practices: registration based on phone number in mobile development (how)? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question