In this video, I explain how to test-drive your permission policies and how you can apply them on routes. I explain why you should not use or test Laravel Gates. I explain how to test and apply permissions (abilities) on routes using the "Can" Laravel standard middleware. Finally, I explain how Laravel's default exception handler could work against you and how to bypass difficulties testing a "Forbidden" request.