Wiki

Articles tagged with "rbac", sorted by viewsX
Displaying 1-10 of 15 result(s).

Getting to Understand Hierarchical RBAC Scheme

Created 4 years ago by daemonsTutorials15 comments – viewed 79,107 times – ( +62 ) – version 1.1
Authentication and Authorization is a good tutorial. Among other topics, it describes basic aspects of Yii's RBAC implementation. But however hard I read the tutorial, I couldn't understand how exactly the hierarchy works. I found how to define authorization hierarchy, how business rules are evaluated, how to configure authManager, but almost nothing about how I should build my hierarchy, in what sequence its nodes are checked, when the checking process stops and what would be the checking result.

Introducci├│n al control de acceso basado en roles (RBAC)

Created 4 years ago by Juan CalvoTutorials4 comments – viewed 40,554 times – ( +17 / -1 ) – version 1.1
Todos los que hemos empezado a utilizar Yii para crear aplicaciones Web, nos hemos dado de bruces cuando hemos intentado poner a funcionar el RBAC (acceso de control basado en roles).

Add information to Yii::app()->user by extending CWebUser (better version)

Created 4 years ago by emixTutorials5 comments – viewed 28,324 times – ( +5 / -1 ) – version 1.1
I found a better solution.
tags: Yii, user, rbac

How to use Expression in default AccessControl to allow only the owner to do some action

Created about a year ago by whatifHow-tos1 comment – viewed 21,324 times – ( +7 / -1 ) – version 1.1
Hi Everyone

CPhpAuthManager - how it works, and when to use it

Created 3 years ago by dckurushinHow-tos5 comments – viewed 20,190 times – ( +1 / -4 ) – version 1.1
Before reading this article, you should first learn this How to setup RBAC with a php file

Troubleshooting Rights Extension

Created 3 years ago by junxiongTips6 comments – viewed 20,003 times – ( +8 ) – version 1.1
Rights is one of user interface for Yii's Role Base Access Control extension. It is one of most downloaded extensions in Yii's Web.

ACL and RBAC

Created 2 years ago by zeroByteHow-tos0 comments – viewed 14,280 times – version 1.1
This HowTo assumes that you have a smattering of ACL in general and of how the acl-extension works basically. It will introduce you into the abstract and give you a hint on how to use Business-Rules. If you have in-depth questions, please refer to the extension documentation. Using ACL in an RBAC-manner cannot and should never obscure the fact that the underlying system is still ACL-based. In fact, the Business-Rules are just another layer in the permission-check plan.

RBAC Super Simple with Admin and User

Created 4 months ago by evercodeTutorials7 comments – viewed 13,891 times – ( +9 / -3 ) – version 2.0
One of the common requests I see in the forum is how to implement RBAC. While you can implement Yii 2's built-in RBAC, that might be too much for developers who are just starting with Yii 2 or have simpler needs. Sometimes you are looking for a fast solution and just want two flavors, user and admin. And even if you will eventually need more, you can use these methods as a starting point for developing your own features or move on to Yii 2's RBAC.

How to use bizRules in standard accessControl filter

Created about a year ago by Maciej Li┼╝ewskiHow-tos8 comments – viewed 10,441 times – ( +3 ) – version 1.1
I assume you are familiar with accessControl standard filter. It allows you to separate privileges to run some action from action code itself. There is however one problem with most common usage - you cannot use bizRules, at least based on some parameters passed to 'checkAccess' just because it is hard to pass them in accessRules() result.

Yet another implementation of CPhpAuthManager.

Created about a year ago by seenivasanHow-tos3 comments – viewed 9,133 times – ( +8 / -1 ) – version 1.1
In this wiki, I try to implement a simple authorization schema without putting much logic inside a file or into database table. We are constructing authorization hierarchy inside the controller. We are getting roles for the current user from database table and assigning only roles to user that are declared in the particular controller. We have brought down the work of loading of auth data at main application level to controller level. This way we have pulverised auth data for entire site into smaller units. Finally we are going to look at couple of examples.