I have 2 groups (Member, and Manager) that will interact with the site.
Using AUTH and ACL. In my app_controller i have a beforeFilter function that
checks that if the user logged in is a "member" and they try access
"manager" it logs them out. Members can only access functions with members_
prefix and same goes for managers_ (unless Auth->Allow('this', 'that')
In the initDB function is it best to manually write every function they are
allowed?
example:
$this->Acl->allow($role, 'controllers/Profiles/member_index');
$this->Acl->allow($role, 'controllers/Profiles/member_edit');
$this->Acl->allow($role, 'controllers/Profiles/member_delete');
Or just
$this->Acl->allow($role, 'controllers/Profiles/);
Since if they try to access anything without member_ they get the boot
anyways.
Thanks
Dave
Check out the new CakePHP Questions site http://cakeqs.org and help others with
their CakePHP related questions.
You received this message because you are subscribed to the Google Groups
"CakePHP" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected] For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
