Well, not just sign out. You should forward/redirect them to a page to explain why, e.g.: you do not have access to the back end.
On Sun, Apr 5, 2009 at 1:59 PM, dziobacz <[email protected]> wrote: > > So that: > > if ($this->getUser()->isAuthenticated()) > { > if( ! $this->getUser()->hasCredential('high') ) > $this->getUser()- >>signOut(); > } > > Little strange - heh - but simple - thx ;) > > > > > On 5 Kwi, 22:25, Sid Bachtiar <[email protected]> wrote: >> Hmm, another easier way is to check user's credential on the index and >> if their credential is not sufficient, sign them out and display a >> message. >> >> >> >> On Sun, Apr 5, 2009 at 5:50 AM, dziobacz <[email protected]> wrote: >> >> > Could you tell me something more ? :) In documentation >> >http://www.symfony-project.org/plugins/sfGuardPluginI don't see >> > that. >> >> > On 5 Kwi, 12:56, Sid Bachtiar <[email protected]> wrote: >> >> absolutely, you can override the login mechanism, just look at sfGuard doc >> >> >> On Sun, Apr 5, 2009 at 2:53 AM, dziobacz <[email protected]> wrote: >> >> >> > Is it possible to do that only admin could log in (if >> >> > is_super_admin==1 in database log in this person, else not log in)? >> >> >> > On 5 Kwi, 12:04, Sid Bachtiar <[email protected]> wrote: >> >> >> Technically it is okay, but it is a bad design. You should not show >> >> >> the links at all. >> >> >> >> On Sun, Apr 5, 2009 at 1:54 AM, dziobacz <[email protected]> >> >> >> wrote: >> >> >> >> > But I used it: >> >> >> >> > index: >> >> >> > is_secure: off >> >> >> > default: >> >> >> > is_secure: on >> >> >> > credentials: [high] >> >> >> >> > On the index site I have log in form, after successful login user >> >> >> > automatic go also on index page and he sees that he logged in and he >> >> >> > sees all pages but he can't go on these pages (only admin can go). Is >> >> >> > it ok - bacause user logged in on admin page ? >> >> >> >> > On 5 Kwi, 10:37, Sid Bachtiar <[email protected]> wrote: >> >> >> >> You can set a module to only allow user with certain credential to >> >> >> >> access it via security.yml. It's really easy, just a setting. >> >> >> >> >> You need to read about Symfony security in the doc. >> >> >> >> >> On Sun, Apr 5, 2009 at 12:21 AM, dziobacz >> >> >> >> <[email protected]> wrote: >> >> >> >> >> > I have made first time in my life backend in symfony - each >> >> >> >> > person can >> >> >> >> > log in but only admin has access to all sites in backend. Is it >> >> >> >> > safe >> >> >> >> > that each person can log in backend ? If not - I don't know how I >> >> >> >> > can >> >> >> >> > make that only admin can log in backend. >> >> >> >> >> -- >> >> >> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz >> >> >> >> -- >> >> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz >> >> >> -- >> >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz >> >> -- >> Blue Horn Ltd - System Developmenthttp://bluehorn.co.nz > > > -- Blue Horn Ltd - System Development http://bluehorn.co.nz --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en -~----------~----~----~----~------~----~------~--~---
