The truth is, I could never even get the blog tutorial authentication working for some reason, let alone the authorization, and so moved onto using some other code from a tutorial that someone else had done based upon the 'official' one and to extend it further. Which is how it got incorporated into my app.
I've just tried to use that 'official' code again, and it's working! I must have done something else wrong when doing the original tutorial that I fixed somehow. The other thing I had also neglected to do was add or update the Auth part of my controllers *public function beforeFilter()* Great! Saves me a lot of donkey work and frustration. Thanks for suggesting I get back to basics Dario :) On Thursday, 25 September 2014 09:49:02 UTC+1, Dario Savella wrote: > > I think you will need to refer to the passed $user argument as shown in > the docs: > <http://book.cakephp.org/2.0/en/tutorials-and-examples/blog-auth-example/auth.html#authorization-who-s-allowed-to-access-what> > > public function isAuthorized($user) { > // Admin can access every action > if (isset($user['role']) && $user['role'] === 'admin') { > return true; > } > // Default deny > return false; > } > > > > -- Like Us on FaceBook https://www.facebook.com/CakePHP Find us on Twitter http://twitter.com/CakePHP --- You received this message because you are subscribed to the Google Groups "CakePHP" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/cake-php. For more options, visit https://groups.google.com/d/optout.
