PHP download

Download the PHP package curly-deni/laravel-permission-controller without Composer

On this page you can find all versions of the php package curly-deni/laravel-permission-controller. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.

Table of contents
Download curly-deni/laravel-permission-controller
More information about curly-deni/laravel-permission-controller
Files in curly-deni/laravel-permission-controller

Vendor curly-deni
Package laravel-permission-controller
Short Description A Laravel package that observes model events and automatically enforces create, update, and delete permissions based on policies.
License MIT
Homepage https://github.com/curly-deni/laravel-permission-controller

Keywords authorization security observer laravel Policy permissions eloquent model observer

FAQ

After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.

Example:

If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.

In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.

Some PHP packages are not free to download and because of that hosted in private repositories. In this case some credentials are needed to access such packages. Please use the auth.json textarea to insert credentials, if a package is coming from a private repository. You can look here for more information.

Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
To use Composer is sometimes complicated. Especially for beginners.
Composer needs much resources. Sometimes they are not available on a simple webspace.
If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.

Please rate this library. Is it a good library?

Example code of curly-deni/laravel-permission-controller

Informations about the package laravel-permission-controller

Laravel Permission Controller

Permission Controller is a lightweight Laravel package that automatically enforces create, update, delete, and optionally read permissions at the model level based on your policy methods. It streamlines permission handling and improves application security with minimal setup.

Features

🛡️ Automatic permission checks for create, update, delete, and optional read actions.
⚡ Seamless integration with Laravel’s native authorization system (policies).
⚙️ Highly configurable — control enabled actions and exception behavior per action.
🧩 Simple trait-based integration for Eloquent models.
📚 Clean, modular, and extendable architecture.

Installation

Install the package via Composer:

Publish the configuration file:

Configuration

The published configuration file config/permission-controller.php looks like this:

Configuration options:

read_scope: The scope class applied to model queries to restrict access based on read permissions.
observer: The observer class that enforces permission checks on model events (creating, updating, deleting).

Per-action settings (create, update, delete, read):

enable: Enable or disable permission enforcement for the specific action.
exception: Exception class to throw when permission is denied (if throw_exception is true).
throw_exception: If true, the package will throw an exception; otherwise, the action will simply not proceed.

If exceptions are enabled, these exception classes are used:

Action	Exception Class
Create	`Aesis\PermissionController\Exceptions\CreateModelForbidden`
Update	`Aesis\PermissionController\Exceptions\UpdateModelForbidden`
Delete	`Aesis\PermissionController\Exceptions\DeleteModelForbidden`
Read	`Aesis\PermissionController\Exceptions\ReadModelForbidden`

Tip: You can override the exception classes to provide custom messages, error codes, or even logging.

Usage

1. Add the Trait to Your Models

Include the HasPermissionController trait in any Eloquent model you want to protect:

2. Define Policy Methods

You must implement policy methods only for the actions that are enabled in the configuration:

If 'create' is enabled, implement a create(User $user) method.
If 'update' is enabled, implement an update(User $user, Model $model) method.
If 'delete' is enabled, implement a delete(User $user, Model $model) method.
If 'read' is enabled, implement a read(User $user) method (without passing the model instance).

Example for a PostPolicy:

Important:
The read method only accepts the User object — no model instance is passed.

Credits

Danila Mikhalev
All Contributors

License

The MIT License (MIT). Please see License File for more information.

All versions of laravel-permission-controller with dependencies

PHP Build Version

Package Version

Version v1.2.1 Release 03. May 2025
create-project require 0 people chose require and
0 people chose create-project.

Download

Download latest version of laravel-permission-controller from vendor curly-deni

Requires php Version ^8.0
illuminate/auth Version ^10.0||^11.0||^12.0
illuminate/contracts Version ^10.0||^11.0||^12.0
illuminate/support Version ^10.0||^11.0||^12.0
spatie/laravel-package-tools Version ^1.16

Composer command for our command line client (download client) This client runs in each environment. You don't need a specific PHP version etc. The first 20 API calls are free. Standard composer command

The package curly-deni/laravel-permission-controller contains the following files

Loading the files please wait ....