Zend framework zend acl模块化实现?
我试图在我的项目中实现zend ACL,我面临三个问题。 要解释这些问题,代码如下: 我的库插件类Zend framework zend acl模块化实现?,zend-framework,default,acl,roles,modular,Zend Framework,Default,Acl,Roles,Modular,我试图在我的项目中实现zend ACL,我面临三个问题。 要解释这些问题,代码如下: 我的库插件类 class Mylib_Controller_Plugin_AccessCheck extends Zend_Controller_Plugin_Abstract { private $_acl = null; private $_auth = null; public function __construct(Zend_Acl $acl, Zend_Auth $aut
class Mylib_Controller_Plugin_AccessCheck extends Zend_Controller_Plugin_Abstract {
private $_acl = null;
private $_auth = null;
public function __construct(Zend_Acl $acl, Zend_Auth $auth) {
$this->_acl = $acl;
$this->auth = $auth;
}
public function preDispatch(Zend_Controller_Request_Abstract $request) {
$module = $request->getModuleName();
$recourse = $request->getControllerName();
$action = $request->getActionName();
$identity = $this->auth->getStorage()->read();
if (!isset($identity->Role)) {
$role = 'default';
} else {
$role = $identity->Role;
}
if (!$this->_acl->isAllowed($role, $module, $recourse)) {
$request->setModuleName('Admin')
->setControllerName('User')
->setActionName('index');
}
}
}
class Application_Model_DbTable_LibraryAcl extends Zend_Acl {
public function __construct() {
$this->addRole(new Zend_acl_Role('default'));
$this->addRole(new Zend_acl_Role('User'));
$this->addRole(new Zend_acl_Role('Admin'), 'User');
$this->add(new Zend_Acl_Resource('Admin'))
->add(new Zend_Acl_Resource('default'))
;
$this->allow('Admin')
->deny(array('User', 'default'));
}
}
$acl = new Application_Model_DbTable_LibraryAcl();
$auth = Zend_Auth::getInstance();
$fc = Zend_Controller_Front::getInstance();
$fc->setControllerDirectory(array('default' => '/../application/modules/default/controllers',
'Admin' => '/../application/modules/Admin/controllers'));
$fc->registerPlugin(new Hyderlib_Controller_Plugin_AccessCheck($acl, $auth));
class Application_Model_DbTable_LibraryAcl extends Zend_Acl {
public function __construct() {
//add Roles
//default role has very limited access
$this->addRole(new Zend_acl_Role('default'));
//User inherits all default access
$this->addRole(new Zend_acl_Role('User'), 'default');
//Admin inherits all User and Default acces
$this->addRole(new Zend_acl_Role('Admin'), 'User');
//add resources, caps don't seem to be a problem.
//add Admin module resource
$this->add(new Zend_Acl_Resource('admin'));
//add Admin module Index controller resource, specify admin as parent
$this->add(new Zend_Acl_Resource('index'), 'admin');
//add default module access
$this->add(new Zend_Acl_Resource('default'));
//add access rules
//default in Zend_Acl is to deny all
//everyone has access to the front page and the error page
$this->allow(NULL, 'default', array('index', 'error'));
$this->allow(NULL, 'default', array('index', 'index'));
//add default user rules
//allow default access to login logout
$this->allow('default', 'default', array('login', 'logout'));
//add crud access for User
$this->allow('User', 'default', array('add', 'update'));
//admin can do all
$this->allow('Admin', NULL);
}
}
isAllowed()public function preDispatch(Zend_Controller_Request_Abstract $request) {
$module = $request->getModuleName();
$recourse = $request->getControllerName();
$action = $request->getActionName();
$identity = $this->auth->getStorage()->read();
if (!isset($identity->Role)) {
$role = 'default';
} else {
$role = $identity->Role;
}
//default role is default, if role is not allowed and not set to default send to error controller.
if (!$this->_acl->isAllowed($role, $module, $recourse, $action)) {
if ($role == 'default'){
$request->setModuleName('default')
->setControllerName('index')
->setActionName('login');
} else {
$request->setModuleName('default')
->setControllerName('error')
->setActionName('noauth');
}