Rights Module - How Is '*' Checked

Hello everyone,

I installed Rights authorization module created by Cris83 which seems perfect for my needs.

I have a question because doesn’t seem clear to me.

I created an authorization item as follows: MyController.*

To me, that means, the user can access all actions under the "MyController".

But it’s not the case (or I’m doing something wrong). When I use

Yii::app()->user->checkAccess('MyController.index')

, for the specified user, it returns false. It only returns true if I do

Yii::app()->user->checkAccess('MyController.*')

.

Is this how it is designed? If so I guess I would have to add additional auth items for each action.

Please advise.

The correct syntax is ‘my.*’ instead of ‘MyController.*’ IIRC.

Thank you Chris. Actually my resolution was something else. It turns out I didn’t investigate enough your program. The mistake I was doing was:

I created a task called “User." (my user model is “User”). But then I was expecting that the "” to catch all actions under the User controller; little that I know it doesn’t work like this. The task is just a name of a collection of objects (Operations) which I didn’t assign to the task. So it was an empty task . Duh!

So I went into the task, I added child objects (operations as individual actions inside the User class) and now is working. Whew!

I have to admit, this module is great; exactly how I imagined this kind of administration should be in an application.

Thank you again for the time you put on it.

I have a translation for it (Romanian) that I would like to share it with the world. Where do I send it to you, because your .live email address you put in your pdf documentation, bounces back.

Thank you again!