PHPackages                             zaichaopan/access-granted - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Authentication &amp; Authorization](/categories/authentication)
4. /
5. zaichaopan/access-granted

ActiveLibrary[Authentication &amp; Authorization](/categories/authentication)

zaichaopan/access-granted
=========================

A Package to Add Role and Permission

v0.1-beta(7y ago)011MITPHPPHP &gt;=7.1

Since Jun 22Pushed 7y ago1 watchersCompare

[ Source](https://github.com/zaichaopan/access-granted)[ Packagist](https://packagist.org/packages/zaichaopan/access-granted)[ RSS](/packages/zaichaopan-access-granted/feed)WikiDiscussions master Synced 2mo ago

READMEChangelog (1)Dependencies (3)Versions (2)Used By (0)

Access Granted
==============

[](#access-granted)

This package allows you to add roles to users, add permissions to users and add permissions to role in your laravel app. It can be used in laravel 5.5 or higher.

- [Access Granted](#access-granted)
    - [Installation](#installation)
    - [Usage](#usage)
        - [Migration](#migration)
        - [Assign Role to user](#assign-role-to-user)
        - [Assign Permission to Role](#assign-permission-to-role)
        - [Add Permissions to User](#add-permissions-to-user)
        - [Has Permission through Role](#has-permission-through-role)
        - [Middleware](#middleware)
        - [Blade Directive](#blade-directive)

Installation
------------

[](#installation)

```
composer require zaichaopan/access-granted
```

Usage
-----

[](#usage)

### Migration

[](#migration)

After install the package, run the migration command to migrate **roles**, **permissions**, **role\_user**, **permission\_user**, and **permission\_role** tables.

```
php artisan migrate
```

The schema of the these tables

```
// roles
Schema::create('roles', function (Blueprint $table) {
    $table->increments('id');
    $table->string('name');
    $table->unique('name');
    $table->timestamps();
});
```

```
// permissions
Schema::create('permissions', function (Blueprint $table) {
    $table->increments('id');
    $table->string('name');
    $table->unique('name');
    $table->timestamps();
});
```

```
// permission_user
Schema::create('permission_user', function (Blueprint $table) {
    $table->increments('id');
    $table->unsignedInteger('user_id');
    $table->unsignedInteger('permission_id');
    $table->unique(['user_id', 'permission_id']);
    $table->foreign('user_id')->references('id')->on('users')->onDelete('cascade');
    $table->foreign('permission_id')->references('id')->on('permissions') ->onDelete('cascade');
    $table->timestamps();
});
```

```
// permission_role
Schema::create('permission_role', function (Blueprint $table) {
    $table->increments('id');
    $table->unsignedInteger('permission_id');
    $table->unsignedInteger('role_id');
    $table->unique(['permission_id', 'role_id']);
    $table->foreign('permission_id')->references('id')->on('permissions')->onDelete('cascade');
    $table->foreign('role_id')->references('id')->on('roles')->onDelete('cascade');
    $table->timestamps();
})
```

```
// role_user
 Schema::create('role_user', function (Blueprint $table) {
    $table->increments('id');
    $table->unsignedInteger('role_id');
    $table->unsignedInteger('user_id');
    $table->unique(['role_id', 'user_id']);
    $table->foreign('role_id')->references('id')->on('roles')->onDelete('cascade');
    $table->foreign('user_id')->references('id')->on('users')->onDelete('cascade');
    $table->timestamps();
});
```

### Assign Role to user

[](#assign-role-to-user)

To assign role to user, add **HasRoles** trait the User model

```
// User.php
class User extends Model
{
    use HasRoles;
}
```

This trait provides the follow methods

- **giveRole**

```
public function giveRole(string ...$roleName): bool
```

It can be used to give a roles or multiple roles to a user. For example:

```
// you have roles in your  admin and manger
$user->giveRole('admin');

// or both
$user->giveRole('admin', 'manager');
```

**Note:**

If the user is given a role that he or she already has, the role won't be add again. And if the user is given a role that does not exist in the roles table, the invalid role won't be added.

- updateRole

```
public function updateRole(string ...$roleNames) : self
```

It can be used to update user role. After calling this method on a user, he or she will only have the new roles. All the old roles will be removed.

```
public function updateRole(string ...$roleNames) : self
```

**Note**:

If the updated role cannot be found, the it will be ignore and the user still keeps his o her old roles.

- **removeRole**

```
public function removeRole(string ...$roleNames) : self
```

It can be used to remove a role or multiple roles from user. For example:

```
// $user have admin and manager roles

// to move manger role
$user->removeRole('manager');

// to move both
$user->removeRole('manager', 'admin');
```

**Note:**

If the removed role cannot be found or the user doesn't have it, it will be ignored.

- **removeAllRoles**

```
public function removeAllRoles() : self
```

It is used to remove all roles from the user. For example:

```
$user->removeAllRoles();
```

- **hasRole**

```
public function hasRole(string ...$roles) : bool
```

It can be used to determine if a user has a role or any role from a list of roles. For example:

```
$user->hasRole('admin');

// it will return true if the user is admin or manager
$user->hasRole('admin', 'manager');
```

### Assign Permission to Role

[](#assign-permission-to-role)

This package provides **HasPermissions** trait which is used by **Role** model by default. So you can give permissions to a role, you can use the following methods provided by the trait.

- **givePermissionTo**

```
public function givePermissionTo(string ...$permissionNames): bool
```

It can be used to give a permission or multiple permissions to a role, for example:

```
// your have a role admin and you have permissions which names are: write post and delete post
$adminRole->givePermissionTo('write post');

// or both
$adminRole->givePermissionTo('delete post');
```

If the given permission is valid or is already give, it will be ignored.

- **updatePermissionTo**

```
public function updatePermissionTo(string ...$permissionNames): bool
```

It can be used to update the permissions of a role. After calling this method on a role, only the new permissions remain and all the old permissions it has will be removed. If an invalid permission is provided, it will be ignore. If all the provided permissions are invalid, the method returns false and role will still keep its old permissions. For example:

```
$role->updatePermissionTo('read post');

// or both
$role->updatePermissionTo('read post', 'delete post');
```

- **withdrawPermissionTo**

```
public function withdrawPermissionTo(string ...$permissionNames): bool
```

It can be used to withdraw a permission or multiple permissions from a role. If a withdrew permission is invalid, it will be ignored. If all the withdrew roles are invalid, the method returns false and the role will still keep its old permissions

```
$role->withdrawPermissionTo('read post');

// or both
$role->withdrawPermissionTo('read post', 'delete post');
```

- **withdrawAllPermissions**

```
public function withdrawAllPermissions(): self
```

It can be used to withdraw all the permission from the role.

```
$role->withdrawPermissions();
```

- **hasPermission**

```
public function hasPermission(string $permission): bool
```

It can be used to determine if a role has a specific permission. For example:

```
$role->hasPermission('read post');
```

### Add Permissions to User

[](#add-permissions-to-user)

To add permissions to user, you just need to add **HasPermissions** trait to your user model.

```
class User extends Model
{
    use HasRoles,
        HasPermissions;

    // ...
}
```

Now you can use all the methods discussed above in **add permissions to role** section to give permissions.

### Has Permission through Role

[](#has-permission-through-role)

When we uses both **HasRoles** and **HasPermissions** trait in the User model, to determine if a user has a specific permission, we have to check if he or she has the permission through permissions table or if his or her role has this permission.

To make things easier, this package provides another trait **HasPermissionThroughRole**. To use it, just add it to your User model

```
class User extends Model
{

    use HasRoles, HasPermissions, HasPermissionThroughRole;
}
```

This trait provides a method **hasPermissionThroughRole** which can be used to determine if a user has a role that contains this permission. For example:

```
$user->hasPermissionThroughRole('write post');
```

**Note**:

If we call **hasPermission** method, it can only check if the user has the permission through the permissions table. To avoid confusion, we can alias this method when using **hasPermissions** trait and override the **hasPermission** method to include check user's role permissions.

```
use Zaichaopan\AccessGranted\Traits\{HasPermissions, HasRolePermissions, HasRoles};

class User extends Model
{
    use HasRoles,
        HasRolePermissions,
        HasPermissions { hasPermission as hasPermissionThroughPermissionTrait; }

    protected $connection = 'testbench';

    protected $table = 'users';

    public function hasPermission(string $permission): bool
    {
        return $this->hasPermissionThroughPermissionTrait($permission) || $this->hasPermissionThroughRole($permission);
    }
}
```

### Middleware

[](#middleware)

This package provides two middleware: **RoleMiddleware** and **PermissionMiddleware.** They can be used to protect any route that needs a specific role and permission to access.

To use them, register them in your **Kernel.php**

```
protected $routeMiddleware = [
    'role' => \Zaichaopan\AccessGranted\Middleware\RoleMiddleware::class,
    'permission' => \Zaichaopan\AccessGranted\Middleware\PermissionMiddleware::class,
];
```

To use them:

```
class AdminController extends Controller
{
    public function __construct()
    {
        $this->middleware('role:admin')
    }
}
```

```
class PostsController extends Controller
{
    public function __construct()
    {
        $this->middleware('permission:edit post')
    }
}
```

### Blade Directive

[](#blade-directive)

This package provides blade directive which can be used in your blade to protect content that only use with a given role can access.

```
@role('admin')

@endrole
```

To only allow user with given permission to access some content. Using

```
@can('edit post')

@endcan
```

###  Health Score

20

—

LowBetter than 14% of packages

Maintenance20

Infrequent updates — may be unmaintained

Popularity2

Limited adoption so far

Community8

Small or concentrated contributor base

Maturity43

Maturing project, gaining track record

 Bus Factor1

Top contributor holds 100% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Unknown

Total

1

Last Release

2878d ago

### Community

Maintainers

![](https://www.gravatar.com/avatar/5dfb2782ff22c81ce8095946983c3d437156ed09b132ec93727da68a14fa7db0?d=identicon)[zaichaopan](/maintainers/zaichaopan)

---

Top Contributors

[![zaichaopan](https://avatars.githubusercontent.com/u/16104572?v=4)](https://github.com/zaichaopan "zaichaopan (12 commits)")

---

Tags

laravelpackagespermissionsphprolelaravelpermissionrole

###  Code Quality

TestsPHPUnit

### Embed Badge

![Health badge](/badges/zaichaopan-access-granted/health.svg)

```
[![Health](https://phpackages.com/badges/zaichaopan-access-granted/health.svg)](https://phpackages.com/packages/zaichaopan-access-granted)
```

###  Alternatives

[bezhansalleh/filament-shield

Filament support for `spatie/laravel-permission`.

2.8k2.9M88](/packages/bezhansalleh-filament-shield)[casbin/laravel-authz

An authorization library that supports access control models like ACL, RBAC, ABAC in Laravel.

324339.9k4](/packages/casbin-laravel-authz)[sereny/nova-permissions

Laravel Nova - Roles &amp; Permissions

86388.6k1](/packages/sereny-nova-permissions)[efficiently/authority-controller

AuthorityController is an PHP authorization library for Laravel 5 which restricts what resources a given user is allowed to access.

15433.2k](/packages/efficiently-authority-controller)

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)