Use Filament Shield to manage access to Table Actions

Hi,

I did some research and some GPT prompts but found nothing useful so far... Is it possible to block / allow access to Table Actions using Filament Shield? Or will it be better to use

->visible()

->visible()

->visible()

->visible()

Cheers, Tee

Solution

try this.

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

Jump to solution

awcodes•7/29/24, 12:06 PM

The actions are tired to the policy. Ie, if the user can’t delete records then the delete action won’t show. Make sure you generated the policy via shield. It’s covered the the shield readme.

TheRealTeeHillOP•7/29/24, 12:27 PM

Is the process the same for custom made actions @awcodes ? Maybe I am not undertsanding the docs fully

TheRealTeeHillOP•7/29/24, 12:28 PM

TheRealTeeHillOP•7/29/24, 12:28 PM

the "View Email" is the custom action, I can see it in the permissions editor

TheRealTeeHillOP•7/29/24, 12:29 PM

I have this in the resource

TheRealTeeHillOP•7/29/24, 12:29 PM

TheRealTeeHillOP•7/29/24, 12:29 PM

but I have nothing added to the policy...

TheRealTeeHillOP•7/29/24, 12:30 PM

do I need to generate the policies again?

awcodes•7/29/24, 12:36 PM

generating policies, doesn't handle custom authorizations. For custom actions you will need to add additional methods to the policy and handle the authorizations inside your custom action that check against that policy method. if that makes sense.

awcodes•7/29/24, 12:37 PM

in this case though, since you likely don't need this authorization anywhere else you can authorize on the action itself without the policy.

Aawcodes in this case though, since you likely don't need this authorization anywhere els...

TheRealTeeHillOP•7/29/24, 12:38 PM

correct the action I am working on only exists in 1 resorce, I have a meeting to attend, I will attempt some things when I finish, cheers for the help/info so far

Solution

awcodes•7/29/24, 12:40 PM

try this.

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

Action::make()->authorize(fn () => Auth::user()->can('view_email'))

awcodes•7/29/24, 12:40 PM

or whatever the actual permission name is.

TheRealTeeHillOP•7/29/24, 1:35 PM

that worked perfectly @awcodes however I am getting IDE (VS Code) error on ->can->can

TheRealTeeHillOP•7/29/24, 1:35 PM

TheRealTeeHillOP•7/29/24, 1:36 PM

no errors in runtime...

awcodes•7/29/24, 1:38 PM

No clue about the ide error. Sorry. It certainly exists.

TheRealTeeHillOP•7/29/24, 1:50 PM

https://github.com/bmewburn/vscode-intelephense/issues/1223 seems I'm not the only one and issue is unrelated to the answer you gave, cheers

GitHub

Undefined Laravel User 'Can' method · Issue #1223 · bmewburn/vscode...

Describe the bug I'm using Laravel and its authorization feature using policy and it's showing me that method can on auth user is not defined even it is. The script is running fine without ...