<?php
Rbac::permission('news.destroy');
Rbac::permission('news.update');
Rbac::permission('news.manage', ['news.destroy', 'news.update']);
Rbac::permission('news.manage.own', ['news.manage'], function ($params) {
return $this->user->id == $params['news']->author_id;
});
Rbac::resource('article', 'ArticlesController', 'author_id');
Rbac::role('admin', ['news.manage', 'article.manage']);
Rbac::role('user', ['news.manage.own', 'article.manage.own']);
