Weave Code
Code Weaver
Helps Laravel developers discover, compare, and choose open-source packages. See popularity, security, maintainers, and scores at a glance to make better decisions.
Feedback
Share your thoughts, report bugs, or suggest improvements.
Subject
Message
Log in Register
Home
Packages
Actual User Bundle
Assessments

Actual User Bundle Laravel Package

11ya/actual-user-bundle

Symfony bundle that keeps user roles and data up to date without forcing re-login. Add ActualUserInterface to your User, switch security to the provided custom user provider, and roles refresh automatically on subsequent requests.

View on GitHub
Deep Wiki
Context7

Product Decisions This Supports

  • Role/permission synchronization: Enables seamless role updates for users without requiring re-authentication, improving UX for admin-driven role changes (e.g., user onboarding, privilege escalation).
  • Security compliance: Supports compliance requirements where role updates must propagate instantly (e.g., GDPR, internal audits).
  • Build vs. buy: Justifies not building a custom solution for role refresh logic, reducing dev effort for a niche but critical feature.
  • Use cases:
    • Admin dashboards where roles are frequently modified.
    • Multi-tenant SaaS apps with dynamic role assignments.
    • Systems where user sessions must reflect real-time role changes (e.g., access control lists).

When to Consider This Package

  • Adopt if:
    • Your Symfony app uses role-based access control (RBAC) and roles change dynamically (e.g., via APIs or admin panels).
    • You cannot tolerate stale role data in user sessions (e.g., security-sensitive apps).
    • Your team lacks time/resources to build a custom role refresh mechanism.
  • Look elsewhere if:
    • You’re not using Symfony (this is a Symfony-specific bundle).
    • Roles are static or updated rarely (no need for real-time sync).
    • You require advanced features (e.g., role inheritance, hierarchical permissions) beyond basic role refresh.
    • Your app uses non-standard authentication (e.g., OAuth2 without Symfony’s security component).

How to Pitch It (Stakeholders)

For Executives: "This bundle solves a hidden UX friction point: when admins update user roles, those changes often don’t reflect in live sessions until the user logs out/in. With ActualUserBundle, role updates propagate instantly—no downtime, no re-authentication. For apps where permissions drive core workflows (e.g., SaaS admin panels), this is a 5-minute fix that prevents support tickets and security gaps. Low risk, high ROI."

For Engineering: *"Symfony’s security system caches user roles at login, but dynamic role changes (e.g., via API) leave sessions stale. This bundle hooks into Symfony’s security provider to force-role refresh without session destruction. Implementation is lightweight:

  1. Add the bundle + composer dependency.
  2. Implement ActualUserInterface in your User entity.
  3. Update security.yml to use the custom provider. No database changes or complex middleware—just plug-and-play role sync. Ideal for teams prioritizing security over custom auth logic."*
Weaver

How can I help you explore Laravel packages today?

Conversation history is not saved when not logged in.
Prompt
Add packages to context
No packages found.
nasirkhan/laravel-sharekit
directorytree/privacy-filter-classifier
directorytree/privacy-filter
datacore/hub-sdk
develia/commons
cuci/prototurk-sdk
cuci/prototurk-sdk-symfony
develia/geo-bundle
dreamzy/livewire-charts
touchestate-sdk/php-sdk
22h/doctrine-garbage-collection-bundle
agtp/agtp-php
agtp/mod-php
splash/sonata-admin
splash/metadata
splash/openapi
splash/scopes
splash/toolkit
testo/output-teamcity
testo/bridge-symfony