Yii framework : role based access control

Question

I am implementing role based access control using yii framework for the application mentioned in the Agile web application development using yii framework book.I have implemented every thing up to page number 189.

page number 189 says that following method can be used to check whether user is allowed to perform some action or not.

If( Yii::app()->user->checkAccess('createIssue')) { //perform needed logic }

but this method always return false for users who have been assigned to createIssue operation

following is the database diagram for RBAC

enter image description here

i am linking UserID and role for authassignment table using following command.

$auth=Yii::app()->authManager; $auth->assign('member',1);

As you can see my user table and authassignment table does not have direct relationship.

And i have configured main.php file in configuration folder

These are the all we have done so far and could any body share your knowledge with me if any thing is missing here. Thanks in advance for any help.

score 6 · Accepted Answer · answered Jan 13 '12 at 19:01

6

Come on, man! Of course there must be a direct relationship between users and assigments. In the following piece of code:

$auth=Yii::app()->authManager; $auth->assign('member',1)

'member' belongs to authiments, and '1' is the id of the user being assigned with that role. "userid", in the "authassigment" table, must point to users table.

answered Jan 13 '12 at 19:01

Alfredo Castaneda Garcia

1,661
9
17

yep, i had done stupid mistake. sorry guys for wasting your time, – KItis Jan 13 '12 at 19:10
2

Don't be so rude with yourself, that kind of oversights are pretty common. It's my pleasure to help you. – Alfredo Castaneda Garcia Jan 13 '12 at 19:13

Yii framework : role based access control

1 Answers1

Linked