My UserPolicy does not allow me to open my own profile

Question

My UserPolicy does not allow me to open my own profile

zenepay opened this issue 4 months ago · comments

Please advise, I use

    public function view(User $user, User $model): bool
    {
        return $user->can('view_user');
    }

I expect to view my login profile https://localhost/office/user/users/3
It return 403 Forbidden
I have check $user->can('view_user) it return true correctly.
It looks like my resource does not allow me to open it.
but if I set to view_any_user, I can open any users.
What I have set wrong?

micraux · Answer 1 · Sun Mar 17 2024 20:54:59 GMT+0800 (China Standard Time)

Maybe auth()->user()->can('view_user')?

Bezhan Salleh · Answer 2 · Thu Mar 28 2024 19:45:27 GMT+0800 (China Standard Time)

if its a resource it should be auth()->user()->can('view_any_user')