On Sun, Jan 4, 2009 at 11:59 AM, mark_story <[email protected]> wrote: > > gearvOsh is correct in addition, when you have a public action > isAuthorized is never called. Why would it? you are visiting a public > url. >
To add to the above, isAuthorized() is called by Auth after it logs someone in. The purpose is to query the controller (if you have "$this->Auth->authorize = 'controller';") to get *further* authorisation credentials (or whatever). It's not an *attribute* that Auth sets (ie. user->is_authorized) but a question for the controller (ie. $controller->isThis UserReallyAuthorized()). The method is meant as an additional routine that you can create after login and it should return a boolean. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
