Aaron Saray

Aaron has more than two decades of programming experience. From spaghetti code to beautifully crafted object-oriented libraries, his first instinct has always been “how can I exploit this?” Aaron’s passion for security was nurtured in the early 2000s when he and a colleague ran an online war game website.

These days he uses his experience to make the case that secure code doesn’t need to be hard to write, difficult to use or ugly to read. Although BASIC was his first love, Turbo Pascal taught him a thing or two, and Python showed him another way. He now spends his days working on enterprise-level PHP and Laravel projects. He would describe his hat as light grey — or definitely white — depending on who is reading this.

Application security February 11, 2022 Aaron Saray

Laravel authorization best practices and tips

Learn best practices for authorization in Laravel, such as only authorizing against permissions, not roles.

Application security February 9, 2022 Aaron Saray

How to use authorization in Laravel: Gates, policies, roles and permissions

Learn how to use Laravel in authorization to your application.

Application security February 7, 2022 Aaron Saray

Authentication vs. authorization: Which one should you use, and when?

Take a look at the difference between authentication and authorization and what works best for you.