Laravel octane random results when using Auth::user()->can('permisssion') after modifying role/permission belonging #2322
Comments
|
I would do, but I have no idea how to fix it 🤣 |
Already tested, not related to cache (tested also with array and redis). |
I understand, I will try to do a repo adding laravel sail with octane and roadrunner to make it easy to replicate in a sandbox |
It is clearly related to this. I think it has to do with how the gate or auth facade is resolved, like it does only once at the boot time and then never resolves again. Happens the same for example with the container, with Octane you should resolve it with the What I don't know is how laravel/permission adds their permission system to the |
|
A possible issue could be with the This could potentially give some issues in the case of octane |
It registers it on the gate using the app() helper: laravel-permission/src/PermissionRegistrar.php Lines 130 to 145 in 6e0f957 |
@drbyte Couldn't it be the
@olivernybroe Already tried, both flushing whole cache and calling |
|
|
Feedback welcome! Note the need to replace your migration files as part of the change. /ping @davidjr82 |
|
@drbyte there might be more changes needed for full octane support. But that change should at least help a bit. |
Thanks @olivernybroe. Appreciate your support. Before Octane came along we made a few refinements for long-running instances, but since I'm not using that in my tech stack right now it's not one of my strengths these days. Will keep this open as we get feedback from testing, and collaborate to ensure compatibility. |
|
@drbyte tested dev-main branch publishing migration and config file, and clearing all caches, and same result. @olivernybroe thanks for the PR. Even if doesn't resolves the issue, it is a needed step to have a good Octane integration. I hope to have some time this weekend to create a repo with the issue, using sail and roadrunner. What I don't know at the moment is how to create a test specifically for Octane (this same issue in the PHP builtin server works). |
|
I am not able to reproduce the issue in a simple repo, therefore there is something in my code that affects the behaviour that I am missing. Although it is something related to Octane -because when running in the builtin php server the issue disappears-, I propose to close this issue and let someone that is able to reproduce an Octane issue to open a new one. If you want to keep this issue open to address the Octane compatibility for 6.x, good for me. But we would need someone that can recreate the issue in a separate and simple repo to address the right problem. In my case, I am going to stop using Octane for the moment and stick to a regular PHP server. |
|
We also plan to use this package on an octane-driven Laravel 9 instance. Should I use the dev-master for octane? |
|
I personally have dropped Octane in my project to avoid conflicts with this package. I still have the issues with the dev-master branch. EDIT: It was not this package. It was another: #2322 (comment) |
|
Maybe a better solution here: mcamara/laravel-localization#780 (comment), mcamara/laravel-localization#780 (comment)
namespace App\Listeners;
use Laravel\Octane\Events\RequestReceived;
use Spatie\Permission\PermissionRegistrar;
class OctaneReloadPermissions
{
public function handle(RequestReceived $event): void
{
$event->sandbox->make(PermissionRegistrar::class)->clearClassPermissions();
}
}
'listeners' => [
RequestReceived::class => [
...Octane::prepareApplicationForNextOperation(),
...Octane::prepareApplicationForNextRequest(),
\App\Listeners\OctaneReloadPermissions::class
],If this works I can make a PR to add the feature: erikn69@844161d |
|
@davidjr82, I tested the following on my octane instance:
$user->syncRoles($role->name);
$user->syncPermissions($role->permissions);
On querying the user via API I am getting the exact role and the currently assigned permissions. Switching the roles & permissions / do some requests, the roles & permissions are always the currently assigned ones. Getting the roles and permissions is working well on my side. I also added a can - attribute to my API endpoint to ensure also this works well: 'can' => $this->resource->can('projects.index'),
Also, this is correct on every request. Is there anything else I can try to reproduce this issue? I want to be sure this is working on production, and I don't want to drop octane. |
|
@Cluster2a maybe is my implementation. Have you tried to put one request waiting after the change (like sleep(20)) and check within other request? @parallels999 maybe it is my implementation, but when I change sail to use the default php built-in server instead of roadrunner, the problem disappears. But I am fine closing this issue because as I said I have dropped Octane to use this package. I think it makes more sense to open a new issue when someone can replicate this kind of problems in a small environment, so we can solve it. |
|
@Cluster2a I finally discovered that the issue was produced by spatie/once package. Here's more information on the actual Octane issue: https://github.com/spatie/once/pull/87/files |
|
@davidjr82 Thanks for updating this! |
|
There is a PR now #2403 |
➡️ UPDATE: THIS PROBLEM WAS RELATED TO ISSUES WITH ANOTHER PACKAGE ⬅️
Describe the bug
Using Laravel Octane with roadrunner, if you update a role permission, calling to
Auth::user()->can('permisssion')leads to unexpected randomly results (randomly grants or denies).This does not happens with the same code when not running Octane.
Happens both with
Auth::user()->can('permisssion')andauth()->user()->can('permisssion')Versions
PHP version: 8.1.15
Database version: mysql 8.0.31
To Reproduce
Steps to reproduce the behavior:
{{ auth()->user()->can('permission-name') ? 1 : 0 }}and refresh many timesHere is my example code and/or tests showing the problem in my app:
Expected behavior
Same code works fine without Octane. With Octane should work in the same way, it should show consistently the "can" of the user.
Environment (please complete the following information, because it helps us investigate better):
command=/usr/bin/php -d variables_order=EGPCS /var/www/html/artisan octane:start --watch --server=roadrunner --host=0.0.0.0 --rpc-port=6001 --port=80The text was updated successfully, but these errors were encountered: