perer876/permission

Lightweight, enum-based definition, querying and mapping of permissions in PHP applications.

Maintainers

Details

github.com/Perer876/guard

Source

Issues

Installs: 1

Dependents: 0

Suggesters: 0

Security: 0

Stars: 1

Watchers: 0

Forks: 0

Open Issues: 0

v1.0.0-alpha.1 2025-07-08 06:25 UTC

Requires

  • php: >=8.4

Requires (Dev)

MIT f5a3122997652432f134ad81bd0c924aacd3c859

  • Oscar Arambula <peteroso876.woop@gmail.com>

This package is auto-updated.

Last update: 2025-07-08 06:47:59 UTC

README

Important

Still in development, not feature complete.

Guard

Lightweight, enum-based definition, querying and mapping of permissions in PHP applications.

Usage

You can define roles and permissions using an enum.

For example, you can define roles like this:

<?php declare(strict_types=1);

namespace App\Permissions;

use Guard\Role;

enum UserRole: string implements Role
{
    case Admin = 'admin';
    case User = 'user';
    case Guest = 'guest';
}

Then, you can specify which roles are granted to each permission.

<?php declare(strict_types=1);

namespace App\Permissions;

use Guard\GrantTo;
use Guard\Permission;

#[GrantTo(UserRole::Admin)] // <- Top level: It's granted to all permissions
enum TodoPermission implements Permission
{
    #[GrantTo(UserRole::Member)] // <- Fine-grained: It's granted to this specific permission
    case ViewAny;

    #[GrantTo(UserRole::Member, UserRole::Viewer)] // <- Multiple roles can be granted
    case View;

    #[GrantTo(UserRole::Member)]
    #[GrantTo(UserRole::Editor)]
    case Create;

    #[GrantTo(UserRole::Member, UserRole::Editor)]
    case Update;
    
    case Delete;
}

Before you can check permissions, you need to implement the Subject interface in your user model. You also need to return the user's roles in a getRoles method and must add the AsSubject trait to the subject so you can check permissions.

<?php declare(strict_types=1);

namespace App\Models;

use App\Permissions\UserRole;
use Guard\AsSubject;
use Guard\Subject;
use Illuminate\Foundation\Auth\User as Authenticatable;

final class User extends Authenticatable implements Subject
{
    use AsSubject;
    
    /** @return UserRole[] */
    public function getRoles(): array
    {
        // Return an array of roles for the user
        return [$this->role];
    }
    
    /** @return array<string, string> */
    protected function casts(): array
    {
        return [
            'role' => UserRole::class,
        ];
    }
    
    /* ... */
}

In a policy, for example, you can check the user model permissions like this:

$user->hasPermission(TodoPermission::ViewAny);

Installation

You can install the package via Composer:

composer require perer876/permission:v1.0.0-alpha.1

Documentation

Coming soon.