i have modified as you said( below) however a user can still access
the index page of the admin area as before, so problem not solved yet.
any other ideas?
in routes:
$Route->connect('/', array('controller' => 'users', 'action' =>
'login', 'home'));
$Route->connect('/admin', array('controller' => 'Pages', 'action' =>
'display', 'admin'));
in users controller:
function beforeFilter()
{
$this->checkSession();
if ($this->params["url"] == "admin") {
$this->params[CAKE_ADMIN] = true;
}
if (!empty($this->params[CAKE_ADMIN])){
//debug($this->params["url"]);
$user = $this->Session->read('User');
$result = $this->User-
>findByUsername($user['username']);
if ($result['User']['user_level'] <> 'admin') {
$this->Session->setFlash('Access Denied.');
$this->redirect('/');
}
// set our layout based on admin routing vars
$this->layout = "admin";
}
}
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "Cake
PHP" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
