>
> gearvOsh is correct in addition, when you have a public action
> isAuthorized is never called. Why would it? you are visiting a public
> url.
>
To add to the above, isAuthorized() is called by Auth after it logs
someone in. The purpose is to query the controller (if you have
"$this->Auth->authorize = 'controller';") to get *further*
authorisation credentials (or whatever). It's not an *attribute* that
Auth sets (ie. user->is_authorized) but a question for the controller
(ie. $controller->isThis UserReallyAuthorized()).
The method is meant as an additional routine that you can create after
login and it should return a boolean.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to cake-php+unsubscribe@googlegroups.com
For more options, visit this group at http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
No comments:
Post a Comment