Actually you can do exactly what you say with CakePHP ACL. By default,
the AclComponent allow() and deny() methods save 1 and -1 respectively
for all fields _create, _read, _update and _delete. Then if you use
the AclComponent to check if a user is authorized to do some actions,
the check() method
I understand ACL logic and what is ACO etc...
But I thing this solution is stupid. Why I should setting premissions
(update,delete,save,add) for action deleteItems of some Controller.
Its sure I want only check if i can call deleteItems for this i dont
need check if i has premission for update, del
I understand ACL logic and what is ACO etc...
But I thing this solution is stupid. Why I should setting premissions
(update,delete,save,add) for action deleteItems of some Controller.
Its sure I want only check if i can call deleteItems for this i dont
need check if i has premission for update, del
Hi,
I think that you didn't understand the complex ACL logik. But it is
really complex.
The "actions" update, delete, save, add are the actions for the ACO.
So the first question is: what is an ACO? It is an Access Control
Object. Read here more about the logic:
http://book.cakephp.org/view/465/U
Hi in ACL you can controll only action (update, delete, save, add) It
is bad because app can has more other metod is any solutuion how
control access for other methor for example:
Controller Users
Function list(){
..
}
THX
Check out the new CakePHP Questions site http://cakeqs.org and hel