So that:
if ($this->getUser()->isAuthenticated())
{
if( ! $this->getUser()->hasCredential('high') )
$this->getUser()-
>signOut();
}
Little strange - heh - but simple - thx ;)
On 5 Kwi, 22:25, Sid Bachtiar <[email protected]> wrote:
> Hmm, another easier way is to check user's credential on the index and
> if their credential is not sufficient, sign them out and display a
> message.
>
>
>
> On Sun, Apr 5, 2009 at 5:50 AM, dziobacz <[email protected]> wrote:
>
> > Could you tell me something more ? :) In documentation
> >http://www.symfony-project.org/plugins/sfGuardPluginI don't see
> > that.
>
> > On 5 Kwi, 12:56, Sid Bachtiar <[email protected]> wrote:
> >> absolutely, you can override the login mechanism, just look at sfGuard doc
>
> >> On Sun, Apr 5, 2009 at 2:53 AM, dziobacz <[email protected]> wrote:
>
> >> > Is it possible to do that only admin could log in (if
> >> > is_super_admin==1 in database log in this person, else not log in)?
>
> >> > On 5 Kwi, 12:04, Sid Bachtiar <[email protected]> wrote:
> >> >> Technically it is okay, but it is a bad design. You should not show
> >> >> the links at all.
>
> >> >> On Sun, Apr 5, 2009 at 1:54 AM, dziobacz <[email protected]>
> >> >> wrote:
>
> >> >> > But I used it:
>
> >> >> > index:
> >> >> > is_secure: off
> >> >> > default:
> >> >> > is_secure: on
> >> >> > credentials: [high]
>
> >> >> > On the index site I have log in form, after successful login user
> >> >> > automatic go also on index page and he sees that he logged in and he
> >> >> > sees all pages but he can't go on these pages (only admin can go). Is
> >> >> > it ok - bacause user logged in on admin page ?
>
> >> >> > On 5 Kwi, 10:37, Sid Bachtiar <[email protected]> wrote:
> >> >> >> You can set a module to only allow user with certain credential to
> >> >> >> access it via security.yml. It's really easy, just a setting.
>
> >> >> >> You need to read about Symfony security in the doc.
>
> >> >> >> On Sun, Apr 5, 2009 at 12:21 AM, dziobacz <[email protected]>
> >> >> >> wrote:
>
> >> >> >> > I have made first time in my life backend in symfony - each person
> >> >> >> > can
> >> >> >> > log in but only admin has access to all sites in backend. Is it
> >> >> >> > safe
> >> >> >> > that each person can log in backend ? If not - I don't know how I
> >> >> >> > can
> >> >> >> > make that only admin can log in backend.
>
> >> >> >> --
> >> >> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz
>
> >> >> --
> >> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz
>
> >> --
> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz
>
> --
> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"symfony users" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/symfony-users?hl=en
-~----------~----~----~----~------~----~------~--~---
