commands([ InstallCommand::class, ClientCommand::class, KeysCommand::class, ]); Gate::before(function (User $user, string $ability) { if ($user->isAdministrator()) { return true; } }); Gate::define('manage-pat', function (User $user) { $useSsoOnly = Settings::get('useSsoOnly'); return ($useSsoOnly && Settings::get('allowPatWhileSsoOnly')) || $useSsoOnly !== true; }); Gate::define('manage-webauthn-credentials', function (User $user) { return ! Settings::get('useSsoOnly'); }); } }