auth Follow @yiiframework

from the github support:

Sorry for the trouble! That user and their work should show up fine now (you may need to close your browser and clear your cache first). Please don't hesitate to let us know if you have any questions or concerns.

What happen to the github link?

Anybody can suggest me, how could i assign admin permissions to some user with extension.

I am not expecting to add that user into the admins array into the config file. :) it would be great if anybody can tell me some thoughts about it.

Thanks in Advance.

Thanks and Regards,

Thanks for your solution posted in Your text to link here... :)

i have already fixed that issue with your provided solution few days before. but couldn't reply on the thread.

Anyways thanks again for your response.

Fixed with:

'components'=>array(
    // ...
    'user'=>array(
        'class' => 'auth.components.AuthWebUser',
        'behaviors' => array(
            'auth' => array(
                'class' => 'auth.components.AuthBehavior',
                'admins' => array('admin'),
            ),
        ),
    ),
    // ...
),

Hi first of all, thanks for the extension. It's really useful, although I dont know how to set owner validation into the yii-auth logic

I always use the below code of validation, it's not a good piece of code because it does not allow the separation of cross-cutting logic.

actionUpdate($id){
$post_model=$this->loadmodel($id);
if($post_model->user_id==Yii::app()->user->getId())
 #do st..
else
 #shame on you
}

please, What is the best way to fulfill my expectations? thanks SERGIO

Hey,

i have downloaded yii-auth-1.6.0.zip version of this extension. and done configuration as you have mentioned here.

But when i am trying to access the application i am getting below given exception.

"Property "AuthWebUser.admins" is not defined. "

Any thoughts about it.

Then i temporary commented below given code.

'user' => array( 'class' => 'auth.components.AuthWebUser', //'admins' => array('admin', 'foo', 'bar'), // users with full access ),

And run the app. now its working.

But i am unable to access the magic of this extension yet.Its showing permission error.

Could you please tell me how could i fix it.

And also. in you downloaded extension AuthModule.php is not updated as it is shown here Could you please confirm it.

Looking forward to here from you.

Any operations named module.* are ignored by this module. In order to fix this the auth/filters/AuthFilter.php file should be altered as follows:

protected function preFilter($filterChain)
{
    ...
    if (($module = $controller->getModule()) !== null){
        $itemName .= $module->getId() . '.';
        if (Yii::app()->user->checkAccess($itemName.'*')) return true;//Add this line
    }
    ...

Awesome extension.

I have strucked in the admin login page that the captcha not showing the image

after i add $publicPages in beforeControllerAction in admin module AdminModule.php

$publicPages = array(
              ......
        'default/captcha',
              ......
            );

Working fine

Hi,

I need in system authorise by 'id' of user. Not 'name' column.

In AuthWebUser.php in your module you have "$this->setIsAdmin(in_array($this->id, Yii::app()->authManager->admins));".

I have to all the time when i get update change this to "$this->id".

Is it possible to do something with that?

Answering my own question. I forgot to assign username in UserIdentity class:

public function authenticate()
    {
        $user=User::model()->findByAttributes(array('username'=>$this->username));
        if($user===null)
            $this->errorCode=self::ERROR_USERNAME_INVALID;
        else if($user->password!==md5($this->password))
            $this->errorCode=self::ERROR_PASSWORD_INVALID;
        else
        {
            $this->_id=$user->id;
            $this->setState('username', $user->username); // Here is what I forgot
            $this->errorCode=self::ERROR_NONE;
        }
        return !$this->errorCode;
    }

AuthWebUser class uses it to assign an admin role. Kind of obvious thing but still I forgot about it while testing.

I can't get it work with assigning user full access. In config I have this:

'authManager' => array(
            'class' => 'CDbAuthManager',
            'connectionID'=>'db',
            'itemTable' => 'tbl_authitem',
            'itemChildTable' => 'tbl_authitemchild',
            'assignmentTable' => 'tbl_authassignment',
            'behaviors' => array(
                'auth' => array(
                    'class' => 'auth.components.AuthBehavior',
                    'admins' => array('admin'), // users with full access
                ),
            ),

but when I log in and check with:

Yii::app()->user->isAdmin//  false

it gives me false and denies from actions untill I write them in filters explicitly. Has anyone faced a similar issue before?

1) To display the access errors in the view, you need to add error handler (site/error) to the exclusion of filter or add it to role permissions

public function filters()
    {
        return array(
            array('auth.filters.AuthFilter - login, logout, restore, captcha, error'),
        );
    }

2) instead 401 error (Unauthorized) in AuthFilter.php, you need to use 403 (Forbidden)

throw new CHttpException(403, 'Access denied.');

PS: Chris, thx for perfect extension

There is no allowedActions in the auth extension. Include them in the filters, which are interpreted by the Yii CController.

public function filters()
{
    return array(
        array('auth.filters.AuthFilter - login, test'),
    );
}

Read more in the doc.

Is there a way to specify allowed actions for guest user? Like we did with the great Rights Module.

public function allowedActions() {
    return 'login,logout'; 
}

Thank you for this great extension. Not sure why there is no support for setting business rules on operations. I added this functionality, feel free to download the fork: https://github.com/kakousis/yii-auth

Hi Chris,

I've got a lot of auth items:

• 394 auth items
• 103 assignments
• 552 parent-child relations

I've noticed that loading the assignment page took very long and made more than 2000 database queries. So I've written an overloaded CDbAuthManager class that will load everything in one (three actually) queries and serve data from a tree like array.

Check it out at SingleDbAuthManager. If that idea will prove itself, maybe it's worth distributing with your auth module.

When using with auth module, just do:

• add at the top: Yii::import('auth.components.CachedDbAuthManager')
• switch base class to CachedDbAuthManager

It shouldn't have any drawbacks in my opinion.

Hi Chris,

Can we use auth without user management/minimum user table? I am a bit confuse.

Does anyone know, if the extension would the extension be compatible with yii-user if it implements this method?

@schmunk Yii::app()->user->isAdmin