5 basic operations - viewAny, view, create, update, delete and permissions will be like module.model.operation
For Example: For a database model Employee we will have permissions
- hr.university.viewAny
- hr.university.view
- hr.university.create
- hr.university.update
- hr.university.delete
Every model must have at least these permission defined. The author must create seeders for any new model permissions.
Permissions should be check at two places.
- Controller policies
- Blade views
Roles should not be check in the code.