ZF2,ByjAuthorize module.config中的规则
[英]ZF2, ByjAuthorize rules in a module.config
问题描述
我猜我做错了,我想限制对模块的访问。 只有登录的用户可以访问tijdmachine模块。
这是我的module.config.php:
<?php
namespace Tijdmachine;
return array(
'resource_providers' => array(
'BjyAuthorizeProviderResourceConfig' => array(
'tijdmachine' => array(),
),
),
'rule_providers' => array(
'BjyAuthorizeProviderRuleConfig' => array(
'allow' => array(
array(array('user'), 'tijdmachine', array('index')),
),
),
),
'view_manager' => array(
'template_path_stack' => array(__DIR__ . '/../view')
),
'controllers' => array(
'invokables' => array(
'Tijdmachine\Controller\IndexController' => 'Tijdmachine\Controller\IndexController',
)
),
'router' => array(
'routes' => array(
'tijdmachine' => array(
'resource' => 'tijdmachine',
'privilege' => 'index',
'type' => 'segment',
'options' => array(
'route' => '/tijdmachine',
// <---- url format module/action/id
'constraints' => array(
'action' => '[a-zA-Z][a-zA-Z0-9_-]*',
'id' => '[0-9]+',
),
'defaults' => array(
'controller' => 'Tijdmachine\Controller\IndexController',
// <--- Defined as the module controller
'action' => 'index',
// <---- Default action
),
),
),
),
),
);
我定义了资源,特权并在我的路线中将其命名。 但是,如果我转到特定的URL,我仍然会看到所有信息,而无需登录。我在做什么错了?
提前致谢!
1 个解决方案
解决方案1
1 已采纳 2014-08-29 09:27:39
return array(
'resource_providers' => array(
'BjyAuthorize\Provider\Resource\Config' => array(
'tijdmachine' => array(),
),
),
'rule_providers' => array(
'BjyAuthorize\Provider\Rule\Config' => array(
'allow' => array(
array(array('user'), 'tijdmachine', array('index')),
),
),
),
...
'guards' => array(
/* If this guard is specified here (i.e. it is enabled], it will block
* access to all routes unless they are specified here.
*/
\BjyAuthorize\Guard\Route::class => array(
['route' => 'tijdmachine', 'roles' => ['user']],
),
),
);
zf2为什么要在模块配置的invokables数组中添加控制器
[英]zf2 Why to add the controller in the invokables array in the module config
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.