As of Twill 3.x more advanced permissions are now available. These permissions can be setup from code and are managed via the Twill admin interface.
To enable permission management we have to add permissions-management to the twill.enabled configuration.
config/twill.php
1<?php2 3return [4 'enabled' => [5 'permissions-management' => true6 ]7];In addition to this we have to configure the permissions' system. There are 3 levels to choose from:
role
roleGroup
Set the twill.permissions.level to the desired type. And also set the modules to manage in
the twill.permissions.modules key.
1<?php 2 3return [ 4 'enabled' => [ 5 'permissions-management' 6 ], 7 'permissions' => [ 8 'level' => \A17\Twill\Enums\PermissionLevel::LEVEL_ROLE, 9 'modules' => ['blogs'],10 ],11]Once you have set up permission-management, make sure to run your database migrations:
1php artisan migrateWhen using the permission level role users will be given a role.
Roles can be managed from the admin interface subnavigation when managing users.
The permission migration seeds 4 roles by default:
At it's core the RoleGroup level is the same as the Role level, however we now have an additional layer that can be used to further Group the users.
By default, there is only one group "Everyone" where every user belongs to except for "Guests".
You can use Roles in combination with Groups to have more control over the permission a user gets.
You can for example have an administrator, but you still want to let an administrator be in control over a specific module.
Now you can have a group "Module 1" and "Module 2", together with the "administrator" role, each user can only access the content for their groups.
With RoleGroupItem you get all of the above. The difference is that you can also set permissions on a per-entity level.