Thanks for the tip. I read through some stuff on Cake's ACLs before,
but never really picked up on the possibilities for row level security
because most tutorials focus on action level restriction.
After some more reading, it looks like what I need is to use Model.id
style aros and acos along wit
Has anyone ever tried to implement an ownership based authorization
scheme in Cake?
What I mean by 'ownership based' is that authorization is based on
object relationships in the database, not on ACLs which consider URLs
or controller actions.
For example, User has many Books, Book has many Page
Hello all,
Has anyone ever tried to implement _optional_ HTTP authentication?
Typical use case:
- Users provide username and password via form at /users/login.
- Username/password is POSTed to /users/login and user is
authenticated by AuthComponent
- User is then logged in an can access secured
Make sure your svn:externals property is uses the repository at
https://svn.cakephp.org/repo/branches/1.2.x.x/cake. I had the same
problem as you where I was stuck at revision 6311, although svn
reported that I was at the latest revision, because I was using the
trunk.
>From the root directory o