I didn't, but I just realised the problem. In AppController, I had
$this->authorize = 'controller' instead of $this->Auth->authorize =
'controller'. It works fine now.
Thanks for responding, though.
On Mar 26, 4:45 pm, nurvzy wrote:
> isAuthorized() is only called if the action is not already al
isAuthorized() is only called if the action is not already allowed
$this->Auth->allow('action_name'). In the controller you want to lock
down do you have something along the lines of $this->Auth->allow('*')
in your beforeFilter?
Hope that helps,
Nick
On Mar 26, 1:45 pm, cricket wrote:
> In App
In AppController, I have:
$this->authorize = 'controller';
I have several types of Users, each with a 'model' field set. I'd like
to bar certain types of Users from accessing the forum. In
ForumSectionsController, I have:
function isAuthorized()
{
return $this->Auth->user('admin') || $this->