rbac solution for: only authorized user can view some posts

I try to develop a categorized blog such that

  • anonymous users can only view category 1

  • authenticated users can view all categories

  • only admin can do Create, Edit and Delete

From my understanding, the current RBAC only differentiates between CRUD. Is this true?

I can write complicated functions but I guess there must be some simpler solutions under Yii.

You will need bizRule.

Thanks. Will look into it.