How to redirect an unauthorized user to the 403 page

Question

I am using ZendFramework2 with zfc-user and ZfcRbac for authorization and access control. I have setup everything to work with database managed role. Now when a user navigate to an un-authorized page, I am getting the error page You are not authorized to access this resource which is thrown by ZfcRbac

Actually I have configured in my zfc-rbac.global.php to redirect to the 403 page. my settings are below.

ZfcRbac\Exception\UnauthorizedException

--

'unauthorized_strategy' => [
     'template' => 'error/403'
],

How do I send the user to 403 page?

EDIT

The right answer is to attach the UnauthorizedStrategy in the onBootstrap

$t = $e->getTarget();
$t->getEventManager()->attach(
    $t->getServiceManager()->get('\ZfcRbac\View\Strategy\UnauthorizedStrategy')
);

score 2 · Accepted Answer · answered Apr 01 '14 at 06:59

2

ZfcRbac per default doesn't do anything but throw the exception. The power of ZfcRbac then lies within it's many, many customizable features. The one you should be looking at is found under the Documentation-Section "Strategies".

In short

register the redirection strategy on your Modules onBootstrap
if required, change the redirection strategies configuration

answered Apr 01 '14 at 06:59

Sam

16,435
6
55
89

Ok. thinks going well. I updated my question with correct event attachment. – Muneer Apr 01 '14 at 07:07
the 403 page is displayed as any content. How to display a whole different layout in case of 403 error? – cwhisperer Sep 08 '15 at 14:01

How to redirect an unauthorized user to the 403 page

1 Answers1