Accesscontrol And Roles

Angel_De_La_Noche · November 19, 2013, 7:12pm

Hi guys. Need some advice.

Suppose I want to create simple auth system, without using RBAC, but with a couple of roles besides built-in “?’” and “@”, so that I can use


public function behaviors()

{

    return [

        'access' => [

            'class' => 'yii\web\AccessControl',

            'rules' => [

                [

                    'allow' => true,

                    'roles' => ['moderator', 'admin'],

                ],

            ],

        ],

    ];

}

The only thing I need is restricting access to some actions based on user roles.

Where’s the best place to add a couple of code lines?

Should I extend user component, overriding checkAccess? should I create my own PhpManager? should I stick with default RBAC?

And where and how should I ‘store’ current user’s role, aquired from DB? (example: in session, during user’s init())

qiang · November 19, 2013, 7:15pm

Override AccessRule::matchRole() and configure AccessControl::ruleConfig

Angel_De_La_Noche · November 19, 2013, 7:18pm

Oh. thanks for a fast answer.

seyyed · January 31, 2014, 11:47pm

Is this right syntax?




public function behaviors()

        {

                return [

                    'access' => [

                        'class' => \yii\web\AccessControl::className(),

                        'ruleConfig' => [

                            'class' => 'app\components\AccessRule'

                        ],

                    ],

                ];

      }

Angel_De_La_Noche · February 1, 2014, 9:03am

seyyed:

Is this right syntax?




public function behaviors()

        {

                return [

                    'access' => [

                        'class' => \yii\web\AccessControl::className(),

                        'ruleConfig' => [

                            'class' => 'app\components\AccessRule'

                        ],

                    ],

                ];

      }

Yes. See this post for full example.