Model Based Access

sanguina · March 2, 2013, 12:31pm

I have a lessons controller, where the access rule restricts only logged in users to see the lessons.


	public function accessRules()

	{

		return array(

			array('allow',  // allow all users to perform 'index' actions

				'actions'=>array('index'),

				'users'=>array('*'),

			),

			

			array('allow', // allow authenticated user to 'view' actions

				'actions'=>array('view'),

				'users'=>array('@'),

			),

			array('allow', // allow admin user to perform 'admin' 'delete', 'create','update' actions

				'actions'=>array('admin','delete', 'create','update' ),

				'users'=>array('admin'),

			),

			array('deny',  // deny all users

				'users'=>array('*'),

			),

		);

	}

the lesson database has lesson->type which can be either a text lesson - ‘t’ or video lesson represented by ‘v’

I now want to modify the rule so that if lesson->type == ‘t’, anyone can see it, but if lesson->type == ‘v’, only logged in users can see it.

How do i achieve this ?

thanks a lot for your reply

seenivasan · March 2, 2013, 6:41pm

Dear My Friend

The following solution is actually what you did not intend.

Anyway it would serve the purpose.




public function accessRules()

        {

                return array(

                        array('allow',  // allow all users to perform 'index' actions

                                'actions'=>array('index','view'), //BRING BACK VIEW HERE...

                                'users'=>array('*'),

                        ),

                        

                         //WE CAN COMMENTOUT THE FOLLWING RULE...

                        /*array('allow', // allow authenticated user to 'view' actions

                                'actions'=>array('view'),

                                'users'=>array('@'),

                        ),*/

                        array('allow', // allow admin user to perform 'admin' 'delete', 'create','update' actions

                                'actions'=>array('admin','delete', 'create','update' ),

                                'users'=>array('admin'),

                        ),

                        array('deny',  // deny all users

                                'users'=>array('*'),

                        ),

Then in controller.




public function actionView($id)

	{   

		$model=$this->loadModel($id);

		if(!Yii::app()->user->getIsGuest() || $model->type=='t')

			$this->render('view',array(

			'model'=>$model,

			));

		else throw new CHttpException(": You are not authorised to perform this action.");

		

	}

Regards.

sanguina · March 2, 2013, 7:00pm

you are god send… as usual

worked right out of the box

thanks sir