New Gatekeeper package setup, now with bonus policies and per-model authorizer classes

BlogCommentAuthorizer.php

<?php

class BlogCommentAuthorizer extends GatekeeperAuthorizer {

    public function register () {
        // if you own it, you can read and edit it
        $this->enforce([new OwnershipPolicy, new ActionPolicy(['read', 'edit'])]);

        // members can read, admins can do anything
        $this->enforce(new AclPolicy($this->getAcl()));

        // if you've been blocked by this blog post, you can't do anything at all
        $this->enforce(new BlogPostBanListPolicy);

        // membership past 30 days old can create
        $this->enforce(new EstablishedMemberBlogPolicy);
    } 

    public function getAcl() {
        return [
            'administrator' => ['*'],
            'member' => ['read']
        ]
    }
}

BlogPostBanListPolicy.php

<?php

class BlogPostBanListPolicy extends BanListPolicy {
    public function check (Actor $actor, ProtectedEntity $entity, $action) {
        // sql check, repository, whatever
        $row = DB::table('blog_blocks')->where('user_id', $actor->id)->where('post_id', $entity->id)->count();
        if ($row) {
            // override others
            return $this->demandNo();
        } else {
            return $this->abstain();
        }
    }
}

EstablishedMemberBlogPolicy.php

<?php

class EstablishedMemberBlogPolicy extends CriteriaPolicy {

    protected $allow = ['create'];

    public function check (Actor $actor, ProtectedEntity $entity, $action) {
        if ($actor->isEstablished() && in_array($action, $this->allow)) {
            return $this->voteYes();
        } else {
            return $this->abstain();
        }
    }
}

sample.php

$blogCommentAuthorizer->iAm(Auth::user())->mayI('update', $model)->please();