Using Zend_Acl with Redirect/Forward

58 Views Asked by André A. At 01 July 2014 at 20:34

In my controller I have some actions with redirects to another actions. For example:

public function editAction()
{
    $this->_forward('add');
}

I'd like to allow user only access the editAction, but I need give him access to addAction too. There is any way to give him only access to editAction even if it redirects to addAction?

Thank you.

Original Q&A

There are 1 best solutions below

fkupper On 20 October 2014 at 14:05

The best way to do this kind of control over your application is ingecting a plugin on yout bootstrap so the action is verified before it reaches the controller.

You need to write a plugin that extends Zend_Controller_Plugin_Abstract and override the preDispatch function, which has as a parameter a request object. From the request you can get controller name and action name and that's when you validate it from you ACL rules and redirect the user wherever you want.

if($request->getControllerName() == 'MyController' &&
   $request->getActionName() == 'edit'){
  if(!$myAcl->isAllowed('edit')){
    $request->setActionName('add');
  }
}

This way you don't have to put a lot of rules on your controllers and keep safe on a plugin. Hope it helps.

Using Zend_Acl with Redirect/Forward

There are 1 best solutions below

Related Questions in PHP

Related Questions in ZEND-FRAMEWORK

Related Questions in ZEND-ACL

Trending Questions

Popular # Hahtags

Popular Questions