Gates vs Policies in Laravel: What’s the Difference and When Should You Use Each?

May 25, 2026 ~ tadmin ~ Leave a comment

Laravel provides two main mechanisms for handling authorization: Gates and Policies. Both determine whether a user is allowed to perform a specific action — but they serve different purposes, scale differently, and fit different architectural needs.

In this post, we’ll break down the differences, show real PHP examples, and give practical guidance on when to use each tool.

What Is a Gate?

A Gate is essentially a simple closure‑based authorization check.
It returns

true

false

and is not tied to any specific model.

Gates are perfect for global permissions or one‑off checks.

Example: Allow only admins to access the admin panel

app/Providers/AuthServiceProvider.php

use Illuminate\Support\Facades\Gate;

public function boot()
{
    Gate::define('view-admin-panel', function ($user) {
        return $user->role === 'admin';
    });
}

Using a Gate in a controller

public function index()
{
    Gate::authorize('view-admin-panel');

    return view('admin.dashboard');
}

Using a Gate in Blade

@can('view-admin-panel')
<a href="/admin">Admin Panel</a>
@endcan

When Gates make sense

The permission is not tied to a model
The logic is simple
You need one or two checks, not a whole system

What Is a Policy?

A Policy is a dedicated class that contains authorization logic for a specific model.
It’s structured, scalable, and ideal for CRUD‑style permissions.

Creating a Policy

php artisan make:policy PostPolicy --model=Post

Example

PostPolicy

class PostPolicy
{
    public function view(User $user, Post $post)
    {
        return true; // anyone can view
    }

    public function update(User $user, Post $post)
    {
        return $user->id === $post->user_id;
    }

    public function delete(User $user, Post $post)
    {
        return $user->id === $post->user_id;
    }
}

Registering the Policy (if Laravel doesn’t auto‑discover it)

protected $policies = [
    Post::class => PostPolicy::class,
];

Using a Policy in a controller

public function update(Request $request, Post $post)
{
    $this->authorize('update', $post);

    $post->update($request->all());
}

Using a Policy in Blade

@can('update', $post)
<button>Edit</button>
@endcan

When Policies make sense

The permission is tied to a specific model
You have multiple actions (view, create, update, delete)
The project is large and needs structure

Gates vs Policies: Side‑by‑Side Comparison

Feature	Gates	Policies
Model‑specific	❌ No	✅ Yes
Scalability	Low	High
Structure	Single functions	Organized class
Best for	Global checks	CRUD permissions
Typical use case	Admin panel access	Managing posts, orders, invoices

When Gates Are a Bad Fit

Avoid Gates when:

You have many checks for the same model
Authorization logic is growing
You start duplicating conditions across controllers

At that point, a Policy is the right tool.

When Policies Are Overkill

Avoid Policies when:

You only need one simple check
The permission is not related to a model
You don’t need a whole class for a single rule

In those cases, a Gate is perfect.

Real‑World Example: Using Both Together

Imagine a blog system:

Gate: access to the admin dashboard (
```
view-admin-panel
```
)
Policy: permissions for managing posts (
```
PostPolicy
```
)

This is the recommended pattern:

Global actions → Gates
Model actions → Policies

Conclusion

Laravel gives you two powerful authorization tools — and each has a clear purpose.

Gates are simple, global, and great for quick checks.
Policies are structured, scalable, and ideal for model‑based permissions.

If your project grows, Policies will keep your authorization logic clean and maintainable.
If you just need a quick global rule, a Gate is the fastest solution.

How to Create a tar+bzip2 Website Archive While Ignoring VCS Folders (.git and others)

May 3, 2026May 3, 2026 ~ tadmin ~ Leave a comment

🗄️ How to Create a tar+bzip2 Website Archive While Ignoring VCS Folders (.git and others)

When backing up web projects, you often need to create a compact archive without including version‑control system directories such as .git, .svn, .hg, or .bzr.
These folders can take up hundreds of megabytes and are completely unnecessary in a production backup.

On Linux, this is very easy — you just need to use
tar
with the
–exclude-vcs
option.

🔍 Why You Should Exclude VCS Directories

Folders like

.git/

contain:

full commit history
temporary files
caches
internal indexes

As a result:

your archive becomes 5–20× larger than needed
you waste storage space
backup creation and transfer take longer

For production backups, it’s best to leave them out.

🧰 The

–exclude-vcs

Option in tar

GNU Tar provides a special option:

--exclude-vcs

It automatically excludes all standard version‑control directories:

.git
.svn
.hg
.bzr
_darcs
CVS

This is the most convenient way to create a clean archive.

🧩 Example: Creating a tar.bz2 Website Archive Without VCS Folders

Let’s say your website is located at:

/home/taras/websites/shkodenko.com/

You want to create an archive in your home directory under

_backups

, with a timestamp in the filename.

✔️ Ready‑to‑use command:

cd /home/taras/websites/shkodenko.com/
tar --exclude-vcs -cpjf ~/_backups/_shkodenko.com__no_vcs__$(date +'%Y-%m-%d_%H-%M').tar.bz2 ./

What this command does:

```
cd ...
```
— moves into the website root
```
tar
```
— runs the archiver
```
--exclude-vcs
```
— excludes all VCS directories
```
-c
```
— create an archive
```
-p
```
— preserve file permissions
```
-j
```
— use bzip2 compression (better than gzip)
```
-f
```
— specify the output filename
```
$(date +'%Y-%m-%d_%H-%M')
```
— adds date and time to the filename
```
./
```
— archives the current directory

The resulting file will look like:

_shkodenko.com__no_vcs__2026-05-03_15-20.tar.bz2

📦 Why bzip2?

tar.bz2

archives usually:

compress better than gzip (
```
.tar.gz
```
)
work slower, but produce smaller files

For website backups, this is often the ideal choice.

🧪 Verifying the Archive

List archive contents:

tar -tjf archive.tar.bz2

Extract the archive:

tar -xpjf archive.tar.bz2

📝 Conclusion

Creating a clean website backup without

.git

and other VCS directories is simple.
Just use

tar

with the

--exclude-vcs

option, and you’ll get a neat, compact, and production‑ready archive.

🐳 Basic Docker Workflow Using PHP + MySQL + Laravel

April 12, 2026April 12, 2026 ~ tadmin

Docker has become a standard tool for local development: it isolates environments, makes projects reproducible, and eliminates the classic “works on my machine” problem. In this post, I’ll walk you through a basic Docker workflow using a simple PHP + MySQL + Laravel stack.

🎯 What We Want to Achieve

A PHP container (e.g., PHP 8.2) to run Laravel
A MySQL container
An optional but recommended Nginx container
A single
```
docker-compose.yml
```
to orchestrate everything
A minimal set of commands for daily development

📦 Project Structure

A typical structure looks like this:

project/
 ├─ src/              # Laravel project
 ├─ docker/
 │   ├─ php/
 │   │   └─ Dockerfile
 │   └─ nginx/
 │       └─ default.conf
 └─ docker-compose.yml

⚙️ PHP Dockerfile

docker/php/Dockerfile

FROM php:8.2-fpm

RUN apt-get update && apt-get install -y \
git zip unzip curl libpq-dev libzip-dev \
&& docker-php-ext-install pdo pdo_mysql zip

COPY –from=composer:2 /usr/bin/composer /usr/bin/composer

WORKDIR /var/www/html

This gives you a minimal PHP-FPM image with Composer and required extensions.

🗄️ MySQL Configuration

Inside

docker-compose.yml

services:
  mysql:
    image: mysql:8.0
    container_name: mysql
    restart: unless-stopped
    environment:
      MYSQL_ROOT_PASSWORD: root
      MYSQL_DATABASE: laravel
      MYSQL_USER: laravel
      MYSQL_PASSWORD: secret
    ports:
      - "3306:3306"
    volumes:
      - db_data:/var/lib/mysql

🌐 Nginx Configuration

docker/nginx/default.conf

server {
listen 80;
root /var/www/html/public;

index index.php index.html;

location / {
try_files $uri $uri/ /index.php?$query_string;
}

location ~ \.php$ {
fastcgi_pass php:9000;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
}
}

🧩 docker-compose.yml

version: '3.8'

services:
  php:
    build:
      context: .
      dockerfile: docker/php/Dockerfile
    container_name: php
    volumes:
      - ./src:/var/www/html
    depends_on:
      - mysql

  nginx:
    image: nginx:latest
    container_name: nginx
    ports:
      - "8080:80"
    volumes:
      - ./src:/var/www/html
      - ./docker/nginx/default.conf:/etc/nginx/conf.d/default.conf
    depends_on:
      - php

  mysql:
    image: mysql:8.0
    environment:
      MYSQL_ROOT_PASSWORD: root
      MYSQL_DATABASE: laravel
      MYSQL_USER: laravel
      MYSQL_PASSWORD: secret
    volumes:
      - db_data:/var/lib/mysql

volumes:
  db_data:

🚀 Starting the Project

1. Create a Laravel project

docker compose run --rm php composer create-project laravel/laravel .

2. Start all containers

docker compose up -d

3. Check in the browser

http://localhost:8080

🔄 Basic Daily Workflow

1. Install dependencies

docker compose exec php composer install

2. Run migrations

docker compose exec php php artisan migrate

3. Run Artisan commands

docker compose exec php php artisan tinker

4. View logs

docker compose logs -f php
docker compose logs -f nginx
docker compose logs -f mysql

5. Restart a service

docker compose restart php

🧹 Useful Tips

Don’t install PHP, MySQL, or Nginx locally — Docker replaces all of them.
Keep configs in separate files (
```
docker/php/Dockerfile
```
,
```
docker/nginx/default.conf
```
) for easier maintenance.
Use a volume for MySQL to avoid losing data.
Run Composer inside the container, not on your host machine.

🎉 Conclusion

This basic stack is a great starting point for any PHP/Laravel project. It’s simple, transparent, and easy to extend: Redis, Horizon, Queue Workers, Mailhog — all of these can be added with just a few lines in

docker-compose.yml

🎉 Happy Birthday, Linus Torvalds!

December 28, 2025December 29, 2025 ~ tadmin

🎉 Happy Birthday, Linus Torvalds!

Today we celebrate the birthday of a person whose ideas quietly reshaped the digital world. Linus Torvalds didn’t just write code — he changed how software is built, shared, and trusted.

This short post is both a birthday greeting and a compact journey through the history of Linux and Git — two pillars of modern computing.

🐧 A Brief History of Linux

In 1991, a Finnish computer science student named Linus Torvalds started a personal project: a free Unix-like operating system kernel for his own PC. He shared it online with a simple message that would become legendary:

“I’m doing a (free) operating system (just a hobby, won’t be big and professional like GNU)…”

That “hobby” became Linux.

Why Linux mattered

Open source by design – anyone could read, modify, and improve the code
Community-driven development – merit over hierarchy
Portability and stability – from servers to smartphones

Over time, Linux evolved from a kernel into the foundation of:

Most of the internet’s servers
Android smartphones
Cloud platforms, containers, DevOps tooling
Embedded systems, routers, supercomputers

Linux proved that open collaboration could outperform closed, proprietary models — at global scale.

🌱 From Kernel Chaos to Git

By the early 2000s, Linux had thousands of contributors. Managing kernel development became a serious technical challenge.

After losing access to a proprietary version control system in 2005, Linus did what he does best:

he built a new tool — Git — in a matter of weeks.

Git’s core ideas (revolutionary at the time)

Distributed version control (no single point of failure)
Fast and local operations
Integrity via cryptographic hashes
Branching as a first-class citizen

Git was not designed to be “user-friendly.”

It was designed to be correct, fast, and scalable — and it succeeded.

Today, Git is the backbone of:

GitHub, GitLab, Bitbucket
Open-source collaboration worldwide
CI/CD pipelines and modern DevOps workflows

🔧 One Mindset, Two Revolutions

Linux and Git share a common philosophy:

Tools should be simple at the core
Systems should scale with human collaboration
Trust the community, but verify with strong technical guarantees

Linus Torvalds showed that engineering excellence and pragmatic thinking can beat hype, bureaucracy, and complexity.

🙌 Thank You, Linus

On your birthday, the global tech community says thank you — for:

Empowering developers
Democratizing software
Proving that open source can power the world

Happy Birthday, Linus.

Your “just a hobby” changed everything.

If you enjoy deep dives into Linux, Git, and backend engineering — you’re in the right place 🚀

Role-Based Access Control (RBAC) in Modern Laravel

December 24, 2025December 25, 2025 ~ tadmin

A Practical Guide for PHP & Back-End Developers

Modern Laravel applications almost always serve multiple user roles: administrators, managers, editors, customers, API clients, and more.
Hard-coding access checks quickly turns into a maintenance nightmare.

That’s why Role-Based Access Control (RBAC) remains one of the most effective and scalable authorization models — especially in Laravel-based backends.

This article is a hands-on guide to implementing RBAC in modern Laravel, focusing on:

clean architecture
real database migrations
practical authorization checks
security best practices

What Is RBAC (Quick Recap)

RBAC is an authorization model where:

User → Role → Permissions

A user has one or more roles
A role groups permissions
A permission represents a single allowed action

Instead of checking who the user is, the system checks what they are allowed to do.

Why RBAC Fits Laravel So Well

Laravel’s architecture aligns naturally with RBAC:

Middleware for route-level protection
Policies for domain-level rules
Gates for fine-grained permissions
Cache-friendly authorization checks
Clean separation from business logic

RBAC also integrates well with:

REST APIs
SPA backends
Admin panels
Multi-tenant systems

RBAC Data Model (Laravel-Friendly)

Core Tables

We’ll use a classic, explicit schema — no magic, easy to reason about.

users
roles
permissions
role_user
permission_role

Database Migrations

Roles Table

Schema::create('roles', function (Blueprint $table) {
    $table->id();
    $table->string('name')->unique(); // admin, editor, manager
    $table->string('description')->nullable();
    $table->timestamps();
});

Permissions Table

Schema::create('permissions', function (Blueprint $table) {
    $table->id();
    $table->string('name')->unique(); // posts.create, users.manage
    $table->string('description')->nullable();
    $table->timestamps();
});

Pivot: role_user

Schema::create('role_user', function (Blueprint $table) {
    $table->foreignId('user_id')->constrained()->cascadeOnDelete();
    $table->foreignId('role_id')->constrained()->cascadeOnDelete();
    $table->primary(['user_id', 'role_id']);
});

Pivot: permission_role

Schema::create('permission_role', function (Blueprint $table) {
    $table->foreignId('permission_id')->constrained()->cascadeOnDelete();
    $table->foreignId('role_id')->constrained()->cascadeOnDelete();
    $table->primary(['permission_id', 'role_id']);
});

Eloquent Models & Relationships

User Model

class User extends Authenticatable
{
    public function roles()
    {
        return $this->belongsToMany(Role::class);
    }

    public function hasRole(string $role): bool
    {
        return $this->roles->contains('name', $role);
    }

    public function canDo(string $permission): bool
    {
        return $this->roles->flatMap->permissions
            ->contains('name', $permission);
    }
}

Role Model

class Role extends Model
{
    protected $fillable = ['name', 'description'];

    public function permissions()
    {
        return $this->belongsToMany(Permission::class);
    }
}

Permission Model

class Permission extends Model
{
    protected $fillable = ['name', 'description'];
}

Authorization via Gates (Laravel Way)

Define permissions once — use them everywhere.

AuthServiceProvider

public function boot()
{
    Gate::before(function (User $user, string $ability) {
        return $user->canDo($ability) ?: null;
    });
}

Now Laravel automatically resolves:

$user->can('posts.update');

Route Protection with Middleware

Route::middleware('can:users.manage')->group(function () {
    Route::resource('users', UserController::class);
});

✔️ Clean
✔️ Declarative
✔️ Easy to audit

RBAC with Policies (Recommended)

PostPolicy Example

class PostPolicy
{
    public function update(User $user, Post $post): bool
    {
        return $user->can('posts.update');
    }

    public function delete(User $user, Post $post): bool
    {
        return $user->can('posts.delete');
    }
}

Usage in controller:

$this->authorize('update', $post);

This keeps authorization logic out of controllers.

Seeding Roles & Permissions

Seeder Example

$admin = Role::create(['name' => 'admin']);
$editor = Role::create(['name' => 'editor']);

$permissions = [
    'posts.create',
    'posts.update',
    'posts.delete',
    'users.manage',
];

foreach ($permissions as $perm) {
    Permission::create(['name' => $perm]);
}

$admin->permissions()->sync(Permission::all());
$editor->permissions()->sync(
    Permission::whereIn('name', ['posts.create', 'posts.update'])->get()
);

Performance: Cache Permissions

Authorization runs a lot.

Best practice:

Eager load roles & permissions on login
Cache permission lookups
Invalidate cache on role updates

Example:

Cache::remember(
    "user_permissions_{$user->id}",
    now()->addHour(),
    fn () => $user->roles->flatMap->permissions->pluck('name')
);

Common RBAC Mistakes in Laravel

❌ Checking roles directly in controllers
❌ Mixing authentication with authorization
❌ Using role names in business logic
❌ Not testing policies
❌ No audit trail for permission changes

When RBAC Alone Is Not Enough

RBAC answers “can the user do X?”
It does NOT answer:

Does the user own this resource?
Is this allowed at this time?
Is this allowed in this context?

Combine RBAC with policy conditions:

$user->can('posts.update') && $post->author_id === $user->id

Final Thoughts

RBAC in Laravel is not about libraries — it’s about clean architecture.

A well-designed RBAC system gives you:

Predictable security
Clean controllers
Scalable authorization
Confidence during audits

If you’re building serious backend systems, RBAC is not optional — it’s foundational.

New Digital Product: Creational Design Patterns (GoF) for Modern PHP Developers

December 23, 2025 ~ tadmin

Over the years of working with PHP — from small scripts to large production systems — I’ve noticed one recurring issue:
object creation logic tends to get messy very quickly.

At first, everything looks simple:

$user = new User();

But as applications grow, this turns into:

too many new operators scattered across the codebase
tight coupling between classes
complex constructors with many dependencies
code that’s hard to test and even harder to change

This is exactly the problem space where creational design patterns shine.

Why Creational Design Patterns Matter

Creational design patterns help answer fundamental questions:

Who should be responsible for creating objects?
How can we decouple business logic from instantiation?
How do we create complex objects without unreadable constructors?
How do we keep code flexible and testable as requirements change?

These patterns are part of the classic Gang of Four (GoF) catalog and remain highly relevant today — especially for PHP developers working with frameworks, DI containers, and layered architectures.

What I’ve Created

I’ve just released a new digital guide:

Creational Design Patterns (GoF):
A Practical Guide for Modern PHP Developers

This is a concise, practical guide focused on understanding and applying the five GoF creational patterns:

Factory Method
Abstract Factory
Builder
Prototype
Singleton (including when not to use it)

The goal of this guide is simple:

Help PHP developers understand when and why to use these patterns — not just how to implement them.

What’s Inside the Guide

✔ Clear explanations without unnecessary theory
✔ Modern PHP-oriented examples
✔ Real-world context (not academic diagrams only)
✔ Decision guidance: use it / don’t use it
✔ Clean structure suitable for learning or quick reference

The product includes:

📘 PDF version (ready to read and share)
📝 Markdown source files (editable, reusable, future-proof)

Delivered as a ZIP bundle.

Who This Is For

This guide is useful if you are:

a junior or middle PHP developer building architectural foundations
a senior developer or team lead mentoring others
preparing for technical interviews
trying to write cleaner, more testable PHP code
working with frameworks like Laravel, Symfony, or custom architectures

Where to Get It

You can find the product here:

👉 https://ko-fi.com/s/e4858bc015

If you decide to check it out — feedback is always welcome.
This kind of work evolves best through real developer experience and discussion.

Composer: The PHP Dependency Management Tool You Need to Master

September 15, 2025 ~ tadmin

When you are working on modern PHP applications, any modern MVC frameworks, one tool stands at the core of nearly every project: Composer. Whether you’re starting a new Laravel project, integrating Symfony components, or pulling in a package for logging, Composer makes dependency management simple and reliable.

In this article, we’ll explore what Composer is, its history, the most commonly used commands, and how it has evolved over time.

What is Composer?

Composer is a dependency management tool for PHP. Instead of manually downloading libraries, including them in your project, and worrying about compatibility, Composer automates the process. It reads your project’s requirements (from

composer.json

) and installs the exact versions of libraries you need, ensuring compatibility and reproducibility.

Why Use Composer?

Saves time: No manual library management.
Handles versions: Ensures libraries are compatible with each other.
Standard in PHP: Virtually all modern PHP frameworks (Laravel, Symfony, Drupal, etc.) rely on Composer.
Autoloading: Automatically generates an autoloader for your classes.

Most Commonly Used Composer Commands

Here are the commands you’ll use most often in daily PHP development:

1. Install dependencies

composer install

Reads

composer.json

and installs all dependencies listed in

composer.lock

2. Add a new package

composer require vendor/package

Example:

composer require monolog/monolog

Adds Monolog as a dependency.

3. Remove a package

composer remove vendor/package

Removes the package and updates your project configuration.

4. Update dependencies

composer update

Updates all packages to the latest versions according to version constraints.

5. Dump the autoloader

composer dump-autoload

Rebuilds the autoloader after adding or modifying classes.

6. Check outdated packages

composer outdated

Lists which dependencies have newer versions available.

7. Run scripts

composer run-script script-name

Executes custom scripts defined in

composer.json

Version History of Composer

Composer has been around for over a decade, evolving alongside PHP itself:

2011 – Composer was introduced by Nils Adermann and Jordi Boggiano.
2012 – Official public release, quickly adopted by the Symfony and Laravel communities.
2015–2019 – Composer became the standard tool for PHP projects worldwide.
2020 (Composer 2.0) – Released with major performance improvements (up to 2x faster dependency resolution), reduced memory usage, and parallel downloads.
2021–2023 (Composer 2.x) – Continuous improvements: enhanced platform checks, new plugin APIs, and better handling of complex dependency graphs.
Today (Composer 2.7, 2024–2025) – Actively maintained, powering nearly every PHP ecosystem, with focus on speed, security, and stability.

Example: Starting a New Project with Composer

Let’s say you want to start a new Laravel project. Instead of downloading files manually, you just run:

composer create-project laravel/laravel blog

That’s it — Composer fetches everything, sets up dependencies, and you can start coding immediately.

Conclusion

Composer has revolutionized PHP development. It’s no longer just a helper tool — it’s the backbone of the modern PHP ecosystem. Whether you’re working on a simple script or a large enterprise application, knowing how to use Composer efficiently is essential for every PHP developer.

If you haven’t already, try out some of the commands above in your next project — and enjoy the productivity boost.

Happy 34th Birthday, Linux

August 25, 2025 ~ tadmin

Happy 34th Birthday, OS Linux! 🎂🐧

On August 25, 1991, a young Finnish student named Linus Torvalds made a modest announcement on the Usenet group comp.os.minix. He wrote that he was working on “just a hobby, nothing big and professional” — a free operating system kernel for 386/486 AT clones. That “hobby” would soon grow into Linux, the foundation of one of the most influential open-source movements in history.

Today, in 2025, we celebrate 34 years of Linux — a system that powers everything from supercomputers, smartphones, and cloud servers to IoT devices, cars, and even space missions.

From Hobby Project to Global Phenomenon

What started as a personal learning project quickly gained traction. Developers from all over the world joined Linus, contributing code, testing features, and improving performance. Within months, Linux had transformed from a rough kernel into the cornerstone of a community-driven ecosystem.

By 1992, Linux was officially released under the GNU General Public License (GPL), ensuring its growth as free and open software. This decision shaped its future, making collaboration and transparency its DNA.

The Impact of Linux

Servers & Cloud: More than 90% of the world’s top 1 million servers run Linux.
Supercomputers: Every single system in the Top500 supercomputer list runs Linux.
Smartphones: Android, the most popular mobile OS, is built on the Linux kernel.
Innovation: From AI research to Kubernetes orchestration, Linux is everywhere.

Simply put: without Linux, modern computing as we know it wouldn’t exist.

Why Developers Love Linux

Freedom & Flexibility — open code means endless possibilities.
Community Support — thousands of contributors worldwide.
Stability & Security — a proven track record in mission-critical environments.
Learning & Growth — Linux remains the go-to platform for students, sysadmins, and developers alike.

Looking Ahead

As we mark Linux’s 34th anniversary, the journey is far from over. With advances in AI, edge computing, and open hardware, Linux continues to push boundaries and empower innovation. Its story is a reminder of what’s possible when curiosity, collaboration, and community come together.

Final Thought

From a Usenet post in 1991 to the backbone of the internet in 2025 — Linux has come a long way. Today, we don’t just celebrate software; we celebrate an idea that changed the world.

Happy Birthday, OS Linux! 🐧🎉 Thank you, Linux Torvalds.

Laravel Best Practices: Repository Pattern for Clean and Scalable Code

August 24, 2025 ~ tadmin

Imagine situation: when you start building applications with Laravel, it’s very tempting to place all logic directly in controllers. After all, Eloquent models make querying the database straightforward, so why not just use them everywhere?

But as your application grows, you’ll notice that this approach quickly leads to fat controllers, tangled logic, and difficulties with testing or making future changes. That’s where the Repository Pattern comes into play.

⸻

What is the Repository Pattern?

The Repository Pattern is a design pattern that acts as a mediator between your application logic and data access layer. Instead of querying Eloquent models directly inside controllers or services, you put that logic into dedicated repository classes.

This separation of concerns gives you:
• Cleaner controllers – focused only on handling HTTP requests and responses.
• Testability – you can mock repositories in your unit tests without touching the database.
• Maintainability – changes in data access (e.g., switching from MySQL to PostgreSQL, or even to an API) require minimal changes in your business logic.
• Reusability – one repository can be used by multiple services or controllers.

⸻

Example: Implementing a User Repository

Let’s look at a simple example.

Instead of this (in a controller):

public function login(Request $request)
{
    $user = User::where('email', $request->input('email'))->first();
    // authentication logic...
}

We’ll create a separate repository class:

// app/Repositories/UserRepository.php
namespace App\Repositories;

use App\Models\User;

class UserRepository 
{
    public function findByEmail(string $email): ?User
    {
        return User::where('email', $email)->first();
    }
}

Now, inject this repository into your controller:

// app/Http/Controllers/AuthController.php
namespace App\Http\Controllers;

use Illuminate\Http\Request;
use App\Repositories\UserRepository;

class AuthController extends Controller
{
    public function login(Request $request, UserRepository $users)
    {
        $user = $users->findByEmail($request->input('email'));
        
        // handle authentication...
    }
}

⸻

Adding Interfaces for More Flexibility

To make it even more flexible, you can define an interface for your repository. This allows you to swap implementations easily (e.g., switch to an external API instead of a database).

// app/Repositories/UserRepositoryInterface.php
namespace App\Repositories;

use App\Models\User;

interface UserRepositoryInterface 
{
    public function findByEmail(string $email): ?User;
}

Then, implement it in your repository:

// app/Repositories/UserRepository.php
namespace App\Repositories;

use App\Models\User;

class UserRepository implements UserRepositoryInterface
{
    public function findByEmail(string $email): ?User
    {
        return User::where('email', $email)->first();
    }
}

And finally, bind the interface to the implementation in a service provider:

// app/Providers/AppServiceProvider.php
public function register(): void
{
    $this->app->bind(
        \App\Repositories\UserRepositoryInterface::class,
        \App\Repositories\UserRepository::class
    );
}

Now your controller can depend on the interface, not the concrete class:

public function login(Request $request, UserRepositoryInterface $users)
{
    $user = $users->findByEmail($request->input('email'));
    // handle authentication...
}

⸻

When Should You Use It?
• Medium to large projects with complex business logic.
• Projects where testing is important (mocking repositories instead of hitting the database).
• Systems that might change data sources in the future.

For small projects, the Repository Pattern may feel like overkill. But in most real-world Laravel applications, it helps you keep code clean, testable, and future-proof.

⸻

Conclusion

The Repository Pattern is one of the most practical best practices you can apply in Laravel. It enforces separation of concerns, keeps controllers slim, improves testability, and makes your project more maintainable in the long run.

If you’re building anything beyond a toy app, consider introducing repositories early—it’s a small investment that pays off big as your project grows.

How to Find Large Files on Ubuntu Linux (and Clean Up Disk Space)

July 17, 2025July 17, 2025 ~ tadmin

🧹 How to Find Large Files on Ubuntu 18.04 (and Clean Up Disk Space)

If you’ve ever run into the dreaded “No space left on device” error on your Linux system, you’re not alone. Over time, log files, package caches, and forgotten downloads can fill up your disk. In this guide, we’ll walk through several ways to identify large files and directories on your Ubuntu 18.04 system — using both command-line tools and interactive utilities.

📁 Why You Might Need This

Your system is running low on disk space.
You’re managing a server and want to optimize storage.
You want to clean up unused data before creating a backup.
You’re just curious what’s eating up all your GBs.

🔍 Method 1: Find Large Files Using

find

Let’s say you want to find files larger than 100 MB:

sudo find / -type f -size +100M -exec ls -lh {} \; 2>/dev/null | sort -k 5 -hr | head -n 20

What this does:

```
find /
```
— search the whole system
```
-type f
```
— look for files only
```
-size +100M
```
— files larger than 100 megabytes
```
ls -lh
```
— show file size in human-readable format
```
sort -k 5 -hr
```
— sort files by size, descending
```
head -n 20
```
— show only the top 20 results

🔐 Note: You may need
sudo
to access some directories.

📦 Method 2: Show Largest Directories with

du

To find out which folders are taking up the most space, use:

du -h --max-depth=1 | sort -hr

This lists the size of each subdirectory in the current folder. Example output from

/var

3.4G    ./log
1.2G    ./cache
5.0G    .

You can also search the whole system:

sudo du -ah / | sort -rh | head -n 30

This command lists the 30 biggest files and folders system-wide.

🖥️ Method 3: Use

ncdu

– The Friendly Disk Usage Viewer

Prefer something more visual and interactive? Try

ncdu

Install it:

sudo apt update
sudo apt install ncdu

Run it:

sudo ncdu /

Navigate the disk usage tree using arrow keys. Press

to delete files directly from within the tool (be careful!).

🧼 Bonus Tips: Clean Up with Built-in Tools

Clear APT cache:

sudo apt clean

Remove old kernels (Ubuntu auto handles this, but still):

sudo apt autoremove --purge

Check disk space usage at a glance:

df -h

🔚 Wrapping Up

Identifying and removing large files can dramatically improve system performance and free up valuable space. Whether you’re a sysadmin managing a fleet of servers or just cleaning up your dev laptop, these tools will help you stay in control.

💬 What’s your favorite way to clean up disk space on Linux?

Feel free to share your tips in the comments box below this blog post or contribute to the conversation on Reddit, X (Twitter), or your favorite dev community.