2012.5.11
>>> Role-based access control <<<
1. edit protected/controller/UserController.php
用以下内容替换 accessRules() 方法
public function accessRules()
{
return array(
array('allow', // allow authenticated users to perform 'index' and 'view' actions
'actions'=>array('index','view'),
'users'=>array('@'),
),
array('allow', // allow authenticated user to perform 'create' and 'update' actions
'actions'=>array('create','update'),
'users'=>array('@'),
),
array('allow', // allow admin user to perform 'admin' and 'delete' actions
'actions'=>array('admin','delete'),
'users'=>array('root'),
),
array('deny', // deny all users
'users'=>array('*'),
),
);
}
2. eidt protected/config/main.php
在component数组中加入:
'authManager'=>array(
'class'=>'CDbAuthManager',
'connectionID'=>'db',
),
>>> End of Role-based access control <<<
>>> Role-based access control <<<
1. edit protected/controller/UserController.php
用以下内容替换 accessRules() 方法
public function accessRules()
{
return array(
array('allow', // allow authenticated users to perform 'index' and 'view' actions
'actions'=>array('index','view'),
'users'=>array('@'),
),
array('allow', // allow authenticated user to perform 'create' and 'update' actions
'actions'=>array('create','update'),
'users'=>array('@'),
),
array('allow', // allow admin user to perform 'admin' and 'delete' actions
'actions'=>array('admin','delete'),
'users'=>array('root'),
),
array('deny', // deny all users
'users'=>array('*'),
),
);
}
2. eidt protected/config/main.php
在component数组中加入:
'authManager'=>array(
'class'=>'CDbAuthManager',
'connectionID'=>'db',
),
>>> End of Role-based access control <<<