Skip to content

Whitelists and Blacklists

The Access component can be configured as either a whitelist or a blacklist by setting the default value using the ALLOW or DENY constants.

By default, Access uses ALLOW, so it acts as a whitelist.

Whitelist Example

Allow all actions by default, and deny specific actions as needed:

use Centum\Access\Access;

$access = new Access(
    Access::ALLOW
);

// Deny "guest" from "delete-post"
$access->deny("guest", "delete-post");

// "guest" can do anything except "delete-post"

Blacklist Example

Deny all actions by default, and allow specific actions as needed:

use Centum\Access\Access;

$access = new Access(
    Access::DENY
);

// Allow "admin" to "delete-post"
$access->allow("admin", "delete-post");

// "admin" can only "delete-post" unless more actions are allowed

When to Use