I'm working on an internal site that relies on a role-based control to restrict access to certain pages and resources. For example, if a given user doesn't have access to a page, the page will state that you don't have access, but will still render things like the navbar, etc.
Is it appropriate to return a 403 response (Laravel 5.1) when such access attempt is denied? I'm asking because 403 is an HTTP response, and it's not like the page request itself wasn't successful.
via Chebli Mohamed
Aucun commentaire:
Enregistrer un commentaire