Have you updated ACOs table before restricting actions (build_acl)?
Make shure you have included Acl and Auth components in your
AppController ?
( var $components = array('Acl', 'Auth', 'Session'); )
and you have following lines in beforeFilter:
$this->Auth->actionPath = 'controllers/';
$this->Auth->authorize = 'actions';
regards
gomes
On 31 Sie, 16:58, nils <nils.th...@gmail.com> wrote:
> btw: no, I didn't leave any
>
> $this->Auth->allow('*');
>
> in there.. - It works fine on *some* methods, but not on all! :(
>
> On 31 Aug., 16:51, nils <nils.th...@gmail.com> wrote:
>
> > Hi all,
>
> > got a bit of an acl/auth problem here...:
>
> > my usergroup with very few rights should be restricted to few methods.
> > Thus I defined:
>
> > $group->id = 7;
> > $this->Acl->deny($group, 'controllers');
> > $this->Acl->deny($group, 'controllers/Messages/index'); // this just
> > because I thought that might help!
> > $this->Acl->allow($group, 'controllers/Messages/inbox');
> > $this->Acl->allow($group, 'controllers/Messages/outbox');
>
> > But still: all methods are still "allowed" for users of that group
> > (e.g. index, view, add)!
>
> > I checked: there's no manual override put in place by me, neither in
> > the messages controller, nor in app controller.
>
> > (Certainly, I could put a manual check in each method, checking wether
> > a user belongs to the admin group, but that's all a bit beside the
> > point now, isn't it?)
>
> > Can anyone shed some light on this, pretty please?
>
> > Everything else is mostly doing fine. I copied the auth part from the
> > cookbook and am using cake 1.3 fwiw
>
> > Thanks for your help in advance!
Check out the new CakePHP Questions site http://cakeqs.org and help others with their CakePHP related questions.
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe from this group, send email to
cake-php+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php?hl=en
No comments:
Post a Comment