php - Laravel 政策返回未授权

Question

我正在尝试在我的项目中实现政策。尽管严格遵守文件，但所有尝试都被证明是不成功的。并且还阅读了关于它和其他媒体的大量帖子。我按照 docs 中的描述做了，但它仍然不起作用。给了什么？

在 AuthServiceProvider 中:

<?php

namespace App\Providers;

use App\User;
use App\Job;
use App\Policies\JobPolicy;

use Illuminate\Foundation\Support\Providers\AuthServiceProvider as ServiceProvider;
use Illuminate\Support\Facades\Gate;

class AuthServiceProvider extends ServiceProvider
{
    /**
     * The policy mappings for the application.
     *
     * @var array
     */
    protected $policies = [
        'App\Job' => 'App\Policies\JobPolicy',
        //Job::class => JobPolicy::class,
    ];

    /**
     * Register any authentication / authorization services.
     *
     * @return void
     */
    public function boot()
    {
        $this->registerPolicies();

        //
    }
}

在政策中:

<?php

namespace App\Policies;

use App\Job;
use App\User;
use Illuminate\Auth\Access\HandlesAuthorization;

class JobPolicy
{
    use HandlesAuthorization;

    /**
     * Determine whether the user can view any jobs.
     *
     * @param  \App\User  $user
     * @return mixed
     */
    public function viewAny(User $user,Job $job)
    {
        //return (($user->isAdmin() || $user->isModerator() || $user->isUser()) && $user->status==1);
        //return ($user->isMod());
        return true;
    }

在 Controller 中:

public function index()
    {
        $this->authorize('viewAny', User::class, Job::class);
        return view("jobs.index");
    }

我的用户模型:

<?php

namespace App;

use Illuminate\Contracts\Auth\MustVerifyEmail;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
use App\Role;

class User extends Authenticatable
{
    use Notifiable;

    /**
     * The attributes that are mass assignable.
     *
     * @var array
     */
    protected $fillable = [
        'name', 'email', 'password',"role_id"
    ];

    /**
     * The attributes that should be hidden for arrays.
     *
     * @var array
     */
    protected $hidden = [
        'password', 'remember_token',
    ];

    /**
     * The attributes that should be cast to native types.
     *
     * @var array
     */
    protected $casts = [
        'email_verified_at' => 'datetime',
    ];

    public function role(){
        return $this->belongsTo("App\Role", "role_id");
    }

    public function isMod()
    {
        $user = User::find(auth()->user()->id);
        $role = $user->role()->first()->name;

        if($role==="job board moderator"){
            return true;
        }
        else{
            return false;
        }

    }

}

和作业模型:

<?php

namespace App;

use Illuminate\Database\Eloquent\Model;
use App\User;

class Job extends Model
{
    protected $fillable = [
        "title", "description", "email"
    ];

    public function user(){
        return $this->belongsTo("App\User","user_id");
    }

}

Answer 1

在政策中:

public function viewAny(User $user)
{
  return true;
}

在 Controller 中:

public function index()
{
  $this->authorize('viewAny', Job::class);

  return view("jobs.index");
}