Tenancy Check in Model Policy

My Policy has the following code:

    public function view(User $user, Model $model): bool
    {
        return $user->hasRole(Roles::SUPER_ADMIN)
            || (Filament::getTenant()->id === $user->tenant_id && $user->model->id == $model->id);
    }

    public function view(User $user, Model $model): bool
    {
        return $user->hasRole(Roles::SUPER_ADMIN)
            || (Filament::getTenant()->id === $user->tenant_id && $user->model->id == $model->id);
    }

Is this the correct way?

I am using PrivateChannel for Broadcasting and Authorization is failing because.

/broadcasting/auth

/broadcasting/auth

isn't aware of the tenant.
Authorization callback does a check if user can view model

$user->can('view', Model::find($id));

$user->can('view', Model::find($id));

Any solution to make this work?

Filament•2y ago•

1 reply

Jigar D

Tenancy Check in Model Policy

My Policy has the following code:

    public function view(User $user, Model $model): bool
    {
        return $user->hasRole(Roles::SUPER_ADMIN)
            || (Filament::getTenant()->id === $user->tenant_id && $user->model->id == $model->id);
    }

    public function view(User $user, Model $model): bool
    {
        return $user->hasRole(Roles::SUPER_ADMIN)
            || (Filament::getTenant()->id === $user->tenant_id && $user->model->id == $model->id);
    }

Is this the correct way?

I am using PrivateChannel for Broadcasting and Authorization is failing because.

/broadcasting/auth

/broadcasting/auth

isn't aware of the tenant.
Authorization callback does a check if user can view model

$user->can('view', Model::find($id));

$user->can('view', Model::find($id));

Any solution to make this work?

Tenancy Check in Model Policy

Similar Threads

Tenancy Check in Model Policy

Similar Threads

Similar Threads

Similar Threads