ACLï¼šãƒ•ã‚¡ã‚¤ãƒ«å´ $this->Auth->authorize ã®è¨å®šã¯ï¼Ÿ
ACL入れよã†ã¨ã—ã¦ã¾ã™ãŒã€æœ€å¾Œã®(?)è©°ã‚ã€Controllerå´ã®è¨å®šã§ãƒãƒžã£ã¦ã¾ã™ãƒ»ãƒ»ãƒ»
検討&調査ä¸ã®ãƒ¡ãƒ¢ã€‚
(追記:解消ã—ã¾ã—ãŸã€‚ 解ã¯ã€Œactionã€ã‚ã‚‹ã„ã¯ã€Œcrudã€ã§ã™)
参考サイトã§ã€
AppController ã« $this->Auth->authorize = 'actions'; ã¨å…¥ã‚Œã¦ãŠãã¾ã™ã€‚
ã¨ã‚ã‚Šã¾ã™ãŒã€ã“ã®æ–¹æ³•ã ã¨ã€actionã”ã¨ã«å…¨éƒ¨aros_acosè¨å®šã—ãªãã¦ã¯ãªã‚‰ãªã„よã†ã§ã™ã€‚
controllerã‚„Modelå˜ä½ã§ã‹ã‘ãŸè¨å®šã ã‘ã§ã¯ã€ãƒªãƒ€ã‚¤ãƒ¬ã‚¯ãƒˆãƒ«ãƒ¼ãƒ—ã®ã‚¨ãƒ©ãƒ¼ã«ãªã‚Šã¾ã™ã€‚
アクション毎ã«å…¨éƒ¨ã¡ã‚ƒã‚“ã¨è¨å®šã„れよã†ã‹ãªã‚ã€ã¨å¼±æ°—ã«ãªã‚Šã¤ã¤ã€$this->Auth->authorizeã«ã¤ã„ã¦èª¿æŸ»ã€‚
ã™ã‚‹ã¨ã€ä¾‹ç¤ºã«ã€Œmodelを指定ã—ãªã•ã„ã€çš„ãªã“ã¨ãŒæ›¸ã„ã¦ã‚ã‚Šã¾ã—ãŸã€‚*1
ACO を利用ã™ã‚‹æ™‚ãªã©ã€ã‚³ãƒ³ãƒˆãƒãƒ¼ãƒ©ä¸ã§ã®å‡¦ç†ã‚’è¡Œã‚ãªã„å ´åˆã¯ã©ã†ã™ã‚Œã°ã‚ˆã„ã®ã§ã—ょã†ã‹ï¼Ÿãã®å ´åˆã€ authorize 変数を「modelã€ã«ã‚»ãƒƒãƒˆã™ã‚‹ã“ã¨ã§ã€èªè¨¼ãŒä½¿ã†ãƒ¢ãƒ‡ãƒ«(例ãˆã° User) ä¸ã® isAuthorized() メソッドãŒã‚³ãƒ¼ãƒ«ã•ã‚Œã¾ã™ã€‚
http://book.cakephp.org/ja/view/396/authorize
ã§ã‚‚ã€è¿½åŠ ã™ã‚‹isAuthorized() メソッド例ã®ã€å¼•æ•°ã¯ãã‚Œãžã‚Œä½•ã‚’ã„れれã°ãƒ»ãƒ»ãƒ»ï¼Ÿ
cake/libs/auth.phpã§ã€å®Ÿéš›ã«isAuthorized()を確èªã€‚
ã™ã‚‹ã¨ã¾ãšã€$this->Auth->authorize = 'actions';ã®æŒ‡å®šã§ACLãƒã‚§ãƒƒã‚¯ãŒå…¥ã‚‹é“ç†ãŒã‚ã‹ã‚Šã¾ã—ãŸã€‚
case 'actions': $valid = $this->Acl->check($user, $this->action()); break;
ã§ã¯è‚心ã®model指定。
case 'model':
$this->mapActions();
$action = $this->params['action'];
if (isset($this->actionMap[$action])) {
$action = $this->actionMap[$action];
}
if (is_string($object)) {
$object = $this->getModel($object);
}
(ä¸ç•¥ï¼‰
if (method_exists($object, 'isAuthorized')) {
$valid = $object->isAuthorized($user, $this->action(':controller'), $action);ãªã‚‹ã»ã©ã§ã¯ã€ãƒ¢ãƒ‡ãƒ«ã«è¿½åŠ ã—ãŸisAuthorizedã®ä¸ã§ã€$this->Acl->check()ã®çµæžœã§ã‚‚è¿”ã›ã°ã‚ˆã•ãã†ã€‚
æŒã£ã¦ã‚‹æœ¬ã«ã‚ˆã‚‹ã¨ã€$this->Acl->check()ã§ACLã®è¨å®šãƒã‚§ãƒƒã‚¯ãŒãƒ»ãƒ»ãƒ»ãƒ»ãƒ»ãƒ»ãƒ»ãƒ»
ã¨æ€ã£ã¦ã€
 ãƒã‚¿ã¨æ°—ãŒã¤ãã¾ã—ãŸã€‚
case 'model' ã®ä¸Šã«ãƒ»ãƒ»ãƒ»ãƒ»
case 'crud':
$this->mapActions();
if (!isset($this->actionMap[$this->params['action']])) {
$err = 'Auth::startup() - Attempted access of un-mapped action "%1$s" in';
$err .= ' controller "%2$s"';
trigger_error(
sprintf(__($err, true), $this->params['action'], $this->params['controller']),
E_USER_WARNING
);
} else {
$valid = $this->Acl->check(
$user,
$this->action(':controller'),
$this->actionMap[$this->params['action']]
);
}
break;CRUDとは (Create, Read, Update, Delete) クラッド: - IT用語辞典バイナリ
ã“ã‚Œã˜ã‚ƒã‚“ã£ï¼ï¼ï¼ˆï¾Ÿãƒï¾Ÿ;)
ã•ã‚‰ã«ã€$this->actionMap ã¨ã„ã†ã®ãŒä½•ç‰©ã‹èª¿ã¹ã¦ã¿ã‚‹ã¨ã€‚
var $actionMap = array( 'index' => 'read', 'add' => 'create', 'edit' => 'update', 'view' => 'read', 'remove' => 'delete' );
・・・・・・・・・・
アクションåã‚’ã€crudã«å¤‰æ›ã™ã‚‹ãŸã‚ã®ã€ãƒžãƒƒãƒ”ングã‹ãƒ¼ãƒ¼ãƒ¼ãƒ¼ï¼ï¼ˆï¾Ÿãƒï¾Ÿ;)
ã¨ã€
 ã„ã†ã“ã¨ã¯ã€‚
よã—・・・ã§ãã‚‹ï¼ï¼
  ã¨ã€æ€ã†ã®ã§ã™ã€‚
Modelã§Aclã‚’å‚ç…§ã•ãˆãã‚Œã°ã€‚。。
ãã‚Œã¨ã‚‚authã«ã„ã‚Œã¦ã€crudãŒæ£è§£ãƒ»ãƒ»ãƒ»ï¼Ÿ
(追記:Modelã‹ã‚‰Aclã‚’å‚ç…§ã™ã‚‹ã®ãŒåŽ„介。ACLã¯èªè¨¼é–¢é€£ãªã®ã ã—ã€crudè¨å®šã—ã¦Authæ‹¡å¼µã§é–“é•ã£ã¦ãªã„ã®ã§ã¯)
*1:追記:ã“ã‚Œã«æƒ‘ã‚ã•ã‚Œã¾ã—㟠T_T
