Support the ongoing development of Laravel.io →
zianwar
posted 10 years ago
Security Requests Forms
Last updated 3 years ago.
0
warren32
replied 10 years ago

Use a hidden from input then check to make sure if the given id is valid.

$channel = Channel::find(Input::get('channel_id');

if (!$channel)
    throw new NotFoundHttpException ('channel not found);

if you want to restrict what users can edit the a specific channel the use filters.


Route::post('/channels',['before'=>'has_access', 'uses'=>'ChannelController@update']

Then of course you would have to define the has_access filter however you want. Check out http://laravel.com/docs/4.2/routing do figure out how to do filters.

0

Sign in to participate in this thread!

Eventy

Your banner here too?

Zianwar zianwar Joined 17 Jul 2014

Moderators

We'd like to thank these amazing companies for supporting us

Eventy NativePHP
Fathom
Forge
Envoyer
Beyond Code
BairesDev
N-iX
Litslink

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

X (Twitter) Bluesky Bluesky GitHub

The community

Laravel Laravel Laravel News Laravel News
Laracasts Laracasts Laravel Podcast Laravel Podcast
© 2025 Laravel.io - All rights reserved.
Terms of service Privacy policy Advertise