This plugins allows you to easily manage your permissions in CakePHP 2.x through the Acl module.
- Managing permissions for each node
- Updating Database with missing AROs (Users, Roles, ...)
- Updating Database with missing ACOs (Controller actions)
- Revoking all permissions
- CakePHP 2.x
- Install SQL tables through Cake Console
- parentNode() method on your requester models
It should look something like this:
var $components = array('Auth', 'Acl', 'Session');
function beforeFilter() {
//Configure AuthComponent
$this->Auth->authorize = array(
'Controller',
'Actions' => array('actionPath' => 'controllers')
);
$this->Auth->authenticate = array('Form' => array('fields' => array('username' => 'login', 'password' => 'password')));
$this->Auth->loginAction = array('controller' => 'users', 'action' => 'login', 'admin' => false, 'plugin' => false);
$this->Auth->logoutRedirect = array('controller' => 'users', 'action' => 'login', 'admin' => false, 'plugin' => false);
$this->Auth->loginRedirect = array('controller' => 'products', 'action' => 'index', 'admin' => false, 'plugin' => false);
}
function isAuthorized($user) {
// return false;
return $this->Auth->loggedIn();
}
To the app/Plugin directory
See AclManager/Config/bootstrap.php
AclManager.aros : write in there your requester models aliases (the order is important)
In app/Config/bootstrap.php
CakePlugin::load('AclManager', array('bootstrap' => true));
The plugin conflicts with $this->Auth->allow(), do not use it. Just make sure that you are logged in.
- Update your AROs and ACOs
- Set up your permissions (do not forget to enable your own public actions!)
Or uncomment return false in AppController::isAuthorized()
Enjoy!
Licensed under the MIT License http://www.opensource.org/licenses/mit-license.php