{"id":3227,"date":"2024-12-16T09:38:29","date_gmt":"2024-12-16T12:38:29","guid":{"rendered":"https:\/\/thiagorossi.com.br\/blog\/?p=3227"},"modified":"2025-12-09T10:56:25","modified_gmt":"2025-12-09T13:56:25","slug":"laravel-authorization","status":"publish","type":"post","link":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/","title":{"rendered":"Laravel Authorization"},"content":{"rendered":"Tempo de leitura: <\/span> 4<\/span> minutos<\/span><\/span>\n

Laravel Authorization<\/strong>: A Autoriza\u00e7\u00e3o<\/strong> no Laravel \u00e9 o processo de determinar se um usu\u00e1rio autenticado tem permiss\u00e3o para realizar uma determinada a\u00e7\u00e3o em um recurso. O framework<\/em> oferece dois mecanismos principais para gerenciar essa l\u00f3gica: Gates<\/strong> (Port\u00f5es) e Policies<\/strong> (Pol\u00edticas). Juntas, essas ferramentas fornecem um sistema de controle de acesso robusto, flex\u00edvel e organizado.<\/p>\n\n\n\n

<\/div>\n\n\n\n

1. \ud83d\udeaa Gates (Port\u00f5es): Regras Simples e Globais<\/h2>\n\n\n\n

Gates<\/strong> s\u00e3o Closures<\/em> simples, definidos no AuthServiceProvider<\/code><\/strong>, ideais para regras de autoriza\u00e7\u00e3o que n\u00e3o est\u00e3o estritamente ligadas a um \u00fanico modelo ou para regras globais.<\/p>\n\n\n\n

<\/div>\n\n\n\n

A. Defini\u00e7\u00e3o do Gate<\/h3>\n\n\n\n

Um Gate recebe a inst\u00e2ncia do usu\u00e1rio autenticado e, opcionalmente, o modelo sobre o qual a a\u00e7\u00e3o ser\u00e1 realizada. Ele deve retornar true<\/code> ou false<\/code>.<\/p>\n\n\n\n

PHP<\/p>\n\n\n\n

\/\/ app\/Providers\/AuthServiceProvider.php -> boot()\n\nuse Illuminate\\Support\\Facades\\Gate;\nuse App\\Models\\Post;\n\n\/\/ Define a regra 'delete-post'\nGate::define('delete-post', function ($user, Post $post) {\n    \/\/ Retorna TRUE se o usu\u00e1rio for o criador do post\n    return $user->id === $post->user_id;\n});\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
B. Verificando o Gate<\/h3>\n\n\n\n
Voc\u00ea pode verificar a permiss\u00e3o usando os m\u00e9todos est\u00e1ticos da Facade Gate<\/code>:<\/p>\n\n\n\n
M\u00e9todo<\/strong><\/td>Fun\u00e7\u00e3o<\/strong><\/td><\/tr><\/thead>
Gate::allows('a\u00e7\u00e3o', [recurso])<\/code><\/strong><\/td>Retorna true<\/code> se o usu\u00e1rio tiver permiss\u00e3o.<\/td><\/tr>
Gate::denies('a\u00e7\u00e3o', [recurso])<\/code><\/strong><\/td>Retorna true<\/code> se o usu\u00e1rio n\u00e3o<\/strong> tiver permiss\u00e3o.<\/td><\/tr>
@can('a\u00e7\u00e3o', $recurso)<\/code><\/strong><\/td>Diretiva Blade para verifica\u00e7\u00e3o no frontend<\/em>.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
PHP<\/p>\n\n\n\n
use Illuminate\\Support\\Facades\\Gate;\n\n\/\/ Exemplo em um Controller\nif (Gate::denies('delete-post', $post)) {\n    \/\/ Lan\u00e7a exce\u00e7\u00e3o 403 (Forbidden)\n    abort(403, 'Acesso n\u00e3o autorizado.'); \n}\n\n$post->delete();\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
2. \ud83d\udcdc Policies (Pol\u00edticas): L\u00f3gica por Modelo<\/h2>\n\n\n\n
Policies<\/strong> s\u00e3o classes dedicadas a encapsular toda a l\u00f3gica de autoriza\u00e7\u00e3o para um modelo Eloquent<\/strong> espec\u00edfico. Elas s\u00e3o a forma preferida para regras de autoriza\u00e7\u00e3o mais complexas e orientadas a objetos.<\/p>\n\n\n\n
<\/div>\n\n\n\n
A. Cria\u00e7\u00e3o e Estrutura<\/h3>\n\n\n\n
Gere uma Policy para o modelo Post<\/code>:<\/p>\n\n\n\n
Bash<\/p>\n\n\n\n
php artisan make:policy PostPolicy --model=Post\n<\/code><\/pre>\n\n\n\n
A classe PostPolicy<\/code> conter\u00e1 m\u00e9todos que correspondem \u00e0s a\u00e7\u00f5es do modelo (view<\/code>, create<\/code>, update<\/code>, delete<\/code>, etc.).<\/p>\n\n\n\n
PHP<\/p>\n\n\n\n
\/\/ app\/Policies\/PostPolicy.php\n\nclass PostPolicy\n{\n    \/**\n     * Determina se o usu\u00e1rio pode atualizar o post.\n     *\/\n    public function update(User $user, Post $post)\n    {\n        \/\/ O usu\u00e1rio pode atualizar se for o criador OU se for um administrador\n        return $user->id === $post->user_id || $user->isAdmin();\n    }\n\n    \/**\n     * Determina se o usu\u00e1rio pode excluir o post.\n     *\/\n    public function delete(User $user, Post $post)\n    {\n        return $user->id === $post->user_id; \/\/ Apenas o criador\n    }\n}\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
B. Registro da Policy<\/h3>\n\n\n\n
Para que o Laravel saiba qual Policy usar para qual modelo, voc\u00ea deve registr\u00e1-la no array $policies<\/code> do AuthServiceProvider.php<\/code><\/strong>.<\/p>\n\n\n\n
PHP<\/p>\n\n\n\n
\/\/ app\/Providers\/AuthServiceProvider.php\n\nprotected $policies = [\n    \\App\\Models\\Post::class => \\App\\Policies\\PostPolicy::class,\n    \/\/ [Modelo::class] => [Policy::class],\n];\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
C. Utilizando a Policy (Controller)<\/h3>\n\n\n\n
O m\u00e9todo $this->authorize()<\/code><\/strong> (dispon\u00edvel em Controllers que estendem a classe base) verifica a Policy e lan\u00e7a uma exce\u00e7\u00e3o 403<\/code> automaticamente se a permiss\u00e3o for negada.<\/p>\n\n\n\n
PHP<\/p>\n\n\n\n
\/\/ No PostController::update(Request $request, Post $post)\n\n\/\/ O Laravel automaticamente localiza e chama PostPolicy@update(User $user, Post $post)\n$this->authorize('update', $post); \n\n\/\/ O c\u00f3digo abaixo s\u00f3 \u00e9 executado se a Policy retornar TRUE\n$post->update($request->validated());\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
3. \ud83c\udf10 Autoriza\u00e7\u00e3o em Rotas e Views<\/h2>\n\n\n\n
A. Autoriza\u00e7\u00e3o em Rotas<\/h3>\n\n\n\n
Voc\u00ea pode usar o Middleware<\/em> can<\/code><\/strong> para verificar Gates ou Policies antes mesmo que o Controller seja chamado.<\/p>\n\n\n\n
PHP<\/p>\n\n\n\n
\/\/ O middleware can usa a Policy impl\u00edcita (modelo Post, a\u00e7\u00e3o update)\nRoute::put('\/posts\/{post}', [PostController::class, 'update'])\n    ->middleware('can:update,post'); \n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
B. Autoriza\u00e7\u00e3o no Frontend (Blade)<\/h3>\n\n\n\n
A diretiva @can<\/code><\/strong> \u00e9 a forma mais limpa de exibir ou ocultar elementos da UI.<\/p>\n\n\n\n
HTML<\/p>\n\n\n\n
@can('delete', $post) \n    <form action=\"{{ route('posts.destroy', $post) }}\" method=\"POST\">\n        @csrf\n        @method('DELETE')\n        <button type=\"submit\" class=\"btn btn-danger\">Excluir Post<\/button>\n    <\/form>\n@endcan\n\n@cannot('delete', $post)\n    <span class=\"text-muted\">Voc\u00ea n\u00e3o pode excluir este post.<\/span>\n@endcannot\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
4. \ud83c\udf9b\ufe0f Regra do Super-Usu\u00e1rio (before<\/code>)<\/h2>\n\n\n\n
O Laravel permite que voc\u00ea defina uma regra super-user<\/em> que \u00e9 executada antes<\/strong> de qualquer m\u00e9todo da Policy. Se retornar true<\/code>, a autoriza\u00e7\u00e3o \u00e9 concedida imediatamente.<\/p>\n\n\n\n
PHP<\/p>\n\n\n\n
\/\/ app\/Policies\/PostPolicy.php\n\npublic function before(User $user, string $ability)\n{\n    \/\/ Se o usu\u00e1rio for um super-admin, ele pode fazer TUDO\n    if ($user->isSuperAdmin()) {\n        return true;\n    }\n    \/\/ Caso contr\u00e1rio, a verifica\u00e7\u00e3o continua nos outros m\u00e9todos\n    return null; \n}\n<\/code><\/pre>\n\n\n\n
<\/div>\n\n\n\n
\u2705 Conclus\u00e3o Laravel Authorization<\/h2>\n\n\n\n
Laravel Authorization<\/strong>: O sistema de autoriza\u00e7\u00e3o, com Gates<\/strong> para regras simples e Policies<\/strong> para a l\u00f3gica por modelo, \u00e9 essencial para proteger recursos. Ao utilizar $this->authorize()<\/code> nos Controllers<\/em> e @can<\/code> nas Views<\/em>, voc\u00ea garante que apenas usu\u00e1rios com a permiss\u00e3o correta possam interagir com partes espec\u00edficas da sua aplica\u00e7\u00e3o, tornando-a segura e confi\u00e1vel.<\/p>\n\n\n\n
Mas antes de dominar o Laravel, se for o seu caso, toda jornada tem um in\u00edcio. Vamos entender quais s\u00e3o os conhecimentos b\u00e1sicos necess\u00e1rios para aproveitar ao m\u00e1ximo este poderoso framework. Para iniciar seus estudos no Laravel, voc\u00ea precisar\u00e1 dominar as seguintes tecnologias:<\/p>\n\n\n\n
\n
\n
\"HTML\"<\/a>
HTML<\/figcaption><\/figure>\n<\/div>\n\n\n\n
\n
\"CSS\"<\/a>
CSS<\/figcaption><\/figure>\n<\/div>\n\n\n\n
\n
\"Javascript\"<\/a>
JavaScript<\/figcaption><\/figure>\n<\/div>\n<\/div>\n\n\n\n
\n
\n
\"SQL\"<\/a>
SQL<\/figcaption><\/figure>\n<\/div>\n\n\n\n
\n
\"Capa<\/a>
PHP<\/figcaption><\/figure>\n<\/div>\n<\/div>\n\n\n\n
E se voc\u00ea gosta do nosso conte\u00fado, n\u00e3o deixe de contribuir adquirindo os servi\u00e7os e produtos dos nossos apoiadores e empresas que somos associados:<\/p>\n\n\n\n
\n
\n
\"Hospedagem<\/a><\/figure>\n<\/div>\n\n\n\n
\n
\"Ofertas<\/a><\/figure>\n<\/div>\n\n\n\n
\n
\"Amazon<\/a><\/figure>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"
Tempo de leitura: <\/span>  4<\/span> minutos<\/span><\/span>Laravel Authorization: A Autoriza\u00e7\u00e3o no Laravel \u00e9 o processo de determinar se um usu\u00e1rio autenticado…<\/p>\n","protected":false},"author":1,"featured_media":1642,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[18],"tags":[],"class_list":["post-3227","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-laravel","wpcat-18-id"],"yoast_head":"\nLaravel Authorization - BLOG THIAGO ROSSI<\/title>\n<meta name=\"description\" content=\"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/\" \/>\n<meta property=\"og:locale\" content=\"pt_BR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Laravel Authorization - BLOG THIAGO ROSSI\" \/>\n<meta property=\"og:description\" content=\"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/\" \/>\n<meta property=\"og:site_name\" content=\"BLOG THIAGO ROSSI\" \/>\n<meta property=\"article:published_time\" content=\"2024-12-16T12:38:29+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-09T13:56:25+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"758\" \/>\n\t<meta property=\"og:image:height\" content=\"426\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Thiago Rossi\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Thiago Rossi\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. tempo de leitura\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/\"},\"author\":{\"name\":\"Thiago Rossi\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#\\\/schema\\\/person\\\/5f28286948ec2afdeb2e044a2196cd87\"},\"headline\":\"Laravel Authorization\",\"datePublished\":\"2024-12-16T12:38:29+00:00\",\"dateModified\":\"2025-12-09T13:56:25+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/\"},\"wordCount\":525,\"publisher\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/11\\\/Laravel.webp\",\"articleSection\":[\"Laravel\"],\"inLanguage\":\"pt-BR\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/\",\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/\",\"name\":\"Laravel Authorization - BLOG THIAGO ROSSI\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/11\\\/Laravel.webp\",\"datePublished\":\"2024-12-16T12:38:29+00:00\",\"dateModified\":\"2025-12-09T13:56:25+00:00\",\"description\":\"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#breadcrumb\"},\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#primaryimage\",\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/11\\\/Laravel.webp\",\"contentUrl\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/11\\\/Laravel.webp\",\"width\":758,\"height\":426,\"caption\":\"Laravel\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/laravel-authorization\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Laravel Authorization\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/\",\"name\":\"THIAGO ROSSI\",\"description\":\"Mais de 20 anos de experi\u00eancia no mercado de TI!\",\"publisher\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#organization\"},\"alternateName\":\"TR | CURSO WEB DEV\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pt-BR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#organization\",\"name\":\"THIAGO ROSSI\",\"alternateName\":\"TR | CURSO WEB DEV\",\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/new-logo.webp\",\"contentUrl\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/new-logo.webp\",\"width\":300,\"height\":300,\"caption\":\"THIAGO ROSSI\"},\"image\":{\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/linkedin.com\\\/in\\\/thiagox86\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/#\\\/schema\\\/person\\\/5f28286948ec2afdeb2e044a2196cd87\",\"name\":\"Thiago Rossi\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g\",\"caption\":\"Thiago Rossi\"},\"description\":\"Com mais de 20 anos de jornada na tecnologia, minha trajet\u00f3ria evoluiu do ensino t\u00e9cnico \u00e0 arquitetura de sistemas complexos. Hoje, foco minha expertise no desenvolvimento de solu\u00e7\u00f5es de Intelig\u00eancia Artificial nativa e an\u00e1lise de dados p\u00fablicos, utilizando o ecossistema PHP para transformar dados brutos em transpar\u00eancia e efici\u00eancia. Como autor e desenvolvedor, acredito na democratiza\u00e7\u00e3o do conhecimento. Essa vis\u00e3o resultou em uma biblioteca de mais de 530 artigos gratuitos, cobrindo desde a base do WebDev e Infraestrutura at\u00e9 os bastidores da ind\u00fastria de Jogos e IA. No universo de Game Design, sou autor do livro \\\"GDD \u2013 O Guia Definitivo\\\" e documento ativamente meus processos atrav\u00e9s de DevLogs, unindo rigor t\u00e9cnico e criatividade em projetos desenvolvidos com GDevelop 5. Meu compromisso \u00e9 conectar engenharia de ponta com as reais oportunidades do mercado de tecnologia.\",\"sameAs\":[\"https:\\\/\\\/thiagorossi.com.br\\\/blog\",\"https:\\\/\\\/instagram.com\\\/thiagorossix86\",\"https:\\\/\\\/linkedin.com\\\/in\\\/thiagox86\"],\"url\":\"https:\\\/\\\/thiagorossi.com.br\\\/blog\\\/author\\\/thiagorossi\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Laravel Authorization - BLOG THIAGO ROSSI","description":"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/","og_locale":"pt_BR","og_type":"article","og_title":"Laravel Authorization - BLOG THIAGO ROSSI","og_description":"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...","og_url":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/","og_site_name":"BLOG THIAGO ROSSI","article_published_time":"2024-12-16T12:38:29+00:00","article_modified_time":"2025-12-09T13:56:25+00:00","og_image":[{"width":758,"height":426,"url":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp","type":"image\/webp"}],"author":"Thiago Rossi","twitter_card":"summary_large_image","twitter_misc":{"Escrito por":"Thiago Rossi","Est. tempo de leitura":"5 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#article","isPartOf":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/"},"author":{"name":"Thiago Rossi","@id":"https:\/\/thiagorossi.com.br\/blog\/#\/schema\/person\/5f28286948ec2afdeb2e044a2196cd87"},"headline":"Laravel Authorization","datePublished":"2024-12-16T12:38:29+00:00","dateModified":"2025-12-09T13:56:25+00:00","mainEntityOfPage":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/"},"wordCount":525,"publisher":{"@id":"https:\/\/thiagorossi.com.br\/blog\/#organization"},"image":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#primaryimage"},"thumbnailUrl":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp","articleSection":["Laravel"],"inLanguage":"pt-BR"},{"@type":"WebPage","@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/","url":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/","name":"Laravel Authorization - BLOG THIAGO ROSSI","isPartOf":{"@id":"https:\/\/thiagorossi.com.br\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#primaryimage"},"image":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#primaryimage"},"thumbnailUrl":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp","datePublished":"2024-12-16T12:38:29+00:00","dateModified":"2025-12-09T13:56:25+00:00","description":"Laravel Authorization: Neste artigo, vamos explorar esses conceitos em profundidade, com um exemplo pr\u00e1tico de como controlar o acesso ...","breadcrumb":{"@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#breadcrumb"},"inLanguage":"pt-BR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/"]}]},{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#primaryimage","url":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp","contentUrl":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/11\/Laravel.webp","width":758,"height":426,"caption":"Laravel"},{"@type":"BreadcrumbList","@id":"https:\/\/thiagorossi.com.br\/blog\/laravel-authorization\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/thiagorossi.com.br\/blog\/"},{"@type":"ListItem","position":2,"name":"Laravel Authorization"}]},{"@type":"WebSite","@id":"https:\/\/thiagorossi.com.br\/blog\/#website","url":"https:\/\/thiagorossi.com.br\/blog\/","name":"THIAGO ROSSI","description":"Mais de 20 anos de experi\u00eancia no mercado de TI!","publisher":{"@id":"https:\/\/thiagorossi.com.br\/blog\/#organization"},"alternateName":"TR | CURSO WEB DEV","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/thiagorossi.com.br\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pt-BR"},{"@type":"Organization","@id":"https:\/\/thiagorossi.com.br\/blog\/#organization","name":"THIAGO ROSSI","alternateName":"TR | CURSO WEB DEV","url":"https:\/\/thiagorossi.com.br\/blog\/","logo":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/thiagorossi.com.br\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/04\/new-logo.webp","contentUrl":"https:\/\/thiagorossi.com.br\/blog\/wp-content\/uploads\/2024\/04\/new-logo.webp","width":300,"height":300,"caption":"THIAGO ROSSI"},"image":{"@id":"https:\/\/thiagorossi.com.br\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/linkedin.com\/in\/thiagox86"]},{"@type":"Person","@id":"https:\/\/thiagorossi.com.br\/blog\/#\/schema\/person\/5f28286948ec2afdeb2e044a2196cd87","name":"Thiago Rossi","image":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/secure.gravatar.com\/avatar\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/bb28b4665f4162bab9fbef8db5a7f00597f79ab90ece9a67189bb6bce78d5786?s=96&d=retro&r=g","caption":"Thiago Rossi"},"description":"Com mais de 20 anos de jornada na tecnologia, minha trajet\u00f3ria evoluiu do ensino t\u00e9cnico \u00e0 arquitetura de sistemas complexos. Hoje, foco minha expertise no desenvolvimento de solu\u00e7\u00f5es de Intelig\u00eancia Artificial nativa e an\u00e1lise de dados p\u00fablicos, utilizando o ecossistema PHP para transformar dados brutos em transpar\u00eancia e efici\u00eancia. Como autor e desenvolvedor, acredito na democratiza\u00e7\u00e3o do conhecimento. Essa vis\u00e3o resultou em uma biblioteca de mais de 530 artigos gratuitos, cobrindo desde a base do WebDev e Infraestrutura at\u00e9 os bastidores da ind\u00fastria de Jogos e IA. No universo de Game Design, sou autor do livro \"GDD \u2013 O Guia Definitivo\" e documento ativamente meus processos atrav\u00e9s de DevLogs, unindo rigor t\u00e9cnico e criatividade em projetos desenvolvidos com GDevelop 5. Meu compromisso \u00e9 conectar engenharia de ponta com as reais oportunidades do mercado de tecnologia.","sameAs":["https:\/\/thiagorossi.com.br\/blog","https:\/\/instagram.com\/thiagorossix86","https:\/\/linkedin.com\/in\/thiagox86"],"url":"https:\/\/thiagorossi.com.br\/blog\/author\/thiagorossi\/"}]}},"_links":{"self":[{"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/posts\/3227","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/comments?post=3227"}],"version-history":[{"count":3,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/posts\/3227\/revisions"}],"predecessor-version":[{"id":5225,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/posts\/3227\/revisions\/5225"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/media\/1642"}],"wp:attachment":[{"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/media?parent=3227"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/categories?post=3227"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/thiagorossi.com.br\/blog\/wp-json\/wp\/v2\/tags?post=3227"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}