Assign permissions to Pivot Table

[sys-auditing]

Hi, how to Use Spatie Laravel-permission Package for Pivot Table ?

[erikn69]

You just have to add a pivot on the tables "roles" and "model_has_permissions", and then overwrite the relationship in the User model "public function roles(): MorphToMany" and "permissions(): MorphToMany", i use session for save the new pivot on login, and later i use the session function for add the pivot on user relationship with whereraw, is that what whas loking for?

[kaaaaaaaaaaai]

@erikn69
I'm stuck with the same problem.
Could you please tell me more about it?

[erikn69]

@kaaaaaaaaaaai add a pivot field, and on login authenticated i put that id on session

Now overwrite relations on user model and add a where for session id
ROLES:

laravel-permission/src/Traits/HasRoles.php

Lines 37 to 49 in a6e4122

	/**
	* A model may have multiple roles.
	*/
	public function roles(): BelongsToMany
	{
	return $this->morphToMany(
	config('permission.models.role'),
	'model',
	config('permission.table_names.model_has_roles'),
	config('permission.column_names.model_morph_key'),
	'role_id'
	);
	}

public function roles(): BelongsToMany
    {
        return $this->morphToMany(
            config('permission.models.role'),
            'model',
            config('permission.table_names.model_has_roles'),
            config('permission.column_names.model_morph_key'),
            'role_id'
        )->where(config('permission.table_names.model_has_roles').'.empr_id',session('empr_id'));
    }

Permissions

laravel-permission/src/Traits/HasPermissions.php

Lines 40 to 52 in a6e4122

	/**
	* A model may have multiple direct permissions.
	*/
	public function permissions(): BelongsToMany
	{
	return $this->morphToMany(
	config('permission.models.permission'),
	'model',
	config('permission.table_names.model_has_permissions'),
	config('permission.column_names.model_morph_key'),
	'permission_id'
	);
	}

public function permissions(): BelongsToMany 
     { 
         return $this->morphToMany( 
             config('permission.models.permission'), 
             'model', 
             config('permission.table_names.model_has_permissions'), 
             config('permission.column_names.model_morph_key'), 
             'permission_id' 
         )->where(config('permission.table_names.model_has_permissions').'.empr_id',session('empr_id')); 
     } 

Now works with a pivot id based on session, with that example also you can made custom roles for each pivot id

[erikn69]

And maybe duplicate of #1634

[kaaaaaaaaaaai]

@erikn69 Thanks for the details, I tried writing your code to see if it worked, but it didn't work with my understanding. Can you help me?Would it work in my situation?

My situation is
There are communities and users, and communities are divided by subdomains.

ex.)
User A has the Writer role when the subdomain is "sample
When the subdomain is "test", the owner role

User B, when the subdomain is "sample", has the Writer role
I would like to grant
(The permission is omitted.)

I'm hoping for a result like this.

//user A loggined and browing "sample.domain.com"
Auth::user()->getRoleNames();
//["writer"]

[erikn69]

@kaaaaaaaaaaai potato patato, the same with diferent ids

on login authenticated, put that id on session with session(['community_id'=>$communityModel->id]);,
(i am assuming that you already have a multi community login, and maybe custom session guard for support remember_me behaivor with community_id, \Illuminate\Auth\Recaller)
Also you can add community_id pivot on roles if you wants custom private roles for a community, and when that id is null, the role is global

Then, all the code on user

public function roles(): BelongsToMany
{
        return $this->morphToMany(
            config('permission.models.role'),
            'model',
            config('permission.table_names.model_has_roles'),
            config('permission.column_names.model_morph_key'),
            'role_id'
        )->where(config('permission.table_names.model_has_roles').'.community_id',session('community_id'));
}
public function permissions(): BelongsToMany 
{ 
         return $this->morphToMany( 
             config('permission.models.permission'), 
             'model', 
             config('permission.table_names.model_has_permissions'), 
             config('permission.column_names.model_morph_key'), 
             'permission_id' 
         )->where(config('permission.table_names.model_has_permissions').'.community_id',session('community_id')); 
} 

Now, User A can has the Writer role when the subdomain is "sample", and when the subdomain is "test", the owner role, and repeat the same role or has diferents on other subdomain because community_id is the new pivot and composite primary key

Also, in addition maybe you have to overwrite public function assignRole(...$roles){} and public function givePermissionTo(...$permissions){} changing ->sync($roles or $permissions, false) for ->syncWithPivotValues($roles or $permissions, ['community_id'=>session('community_id')], false) if you wants to change permissions from your application instead of manually

It can be improved, but it works, nobody wants to do a PR for this, nor do they provide information, maybe @freekmurze can better understand the idea and add it to the package

Also using model_type can be another way, adding more models for user's table, and on config auth.providers more classes and guards, so you can have a new model guard for every community, but then you have N+1 issue

[fredsal]

@kaaaaaaaaaaai i have the same problem, did erikn69's solution works for you?
@drbyte is there a better way to achieve this?

[drbyte]

Yes, overriding the trait's relations in your app is a suitable way to accomplish this.