Stack Overflow
Stack Overflow

Questions tagged [zend-acl]

Zend ACL is an Access Control List class in the Zend Framework, an open source, object-oriented web application framework implemented in PHP 5 and licensed under the New BSD License.

Zend_Acl provides a lightweight and flexible access control list (ACL) implementation for privileges management. In general, an application may utilize such ACL's to control access to certain protected objects by other requesting objects.

For the purposes of this documentation:

a resource is an object to which access is controlled.
a role is an object that may request access to a Resource.

Put simply, roles request access to resources. For example, if a parking attendant requests access to a car, then the parking attendant is the requesting role, and the car is the resource, since access to the car may not be granted to everyone.

Through the specification and use of an ACL, an application may control how roles are granted access to resources.

Questions tagged with zend-acl should show they are implementing the Zend_Acl class from the Zend Framework.

To read more visit:
http://framework.zend.com/manual/en/zend.acl.introduction.html

144 questions
2
votes
2 answers

Where should filtering with an Acl be performed?

Let's say I have three tables: users, books, and users_books. In one of my views, I want to display a list of all the books the current user has access to. A user has access to a book if a row matching a user and a book exists in users_books. There…
Chris Laplante
  • 29,338
  • 17
  • 103
  • 134
2
votes
2 answers

List Rules in Zend_ACL

I'm using zend_acl to manage ACL lists in my web application. To be able to show a 'Manage Permissions' Dialogue I need a possibility to get defined rules for the following combinations: - rules set for a specific role on a specific resource - all…
Quest
  • 58
  • 5
2
votes
1 answer

Zend_Test & Controller Plugins for ACL (Redirecting)

I am suspecting that there's a problem with Controller Plugins redirecting when used in Zend Test? I have a controller plugin like http://pastie.org/1422639 I have put echo statements for debugging. I have code for redirecting to login if user is…
Jiew Meng
  • 84,767
  • 185
  • 495
  • 805
2
votes
4 answers

Multiple Instances (2) of Zend_Auth

I have a CMS built on the Zend Framework. It uses Zend_Auth for "CMS User" authentication. CMS users have roles and permissions that are enforced with Zend_Acl. I am now trying to create "Site Users" for things like an online store. For…
Sonny
  • 8,204
  • 7
  • 63
  • 134
2
votes
2 answers

Is Zend ACL suitable for permissions for content by owner

I think Zend ACL is used to give permissions to user types (student, teacher). Can it be used to give permissions on per content basis. What I mean is this blog post was written by this user and they can edit it. Others can't edit it. Can Zend ACL…
samquo
  • 757
  • 7
  • 21
2
votes
0 answers

How do I structure Zend_Controller_Router_Route to handle the action and a param key in the same position?

Here is my route in JSON: "jobs": { "type":"Zend_Controller_Router_Route", "route":"/jobs/:action/:id/*", "defaults": { "module":"api", "controller":"jobs", "action":"index", "id":0 } } This allows for URIs…
talentedmrjones
  • 7,511
  • 1
  • 26
  • 26
2
votes
1 answer

Zend Navigation and RBAC

I am developing a ZF2 based site. I have a main navigation which stays same regardless of the visitor/user status. Need to add another component/nav, which will depend on the user's status and role. For a visitor the items will be Register Login EN…
M Hill
  • 225
  • 2
  • 6
2
votes
2 answers

Admin section in ZendFramework application

I have an application at the moment using Zend_Auth for user access. The site has an admin section where I want one user who has the role of admin in my database to be allowed access when he uses his credentials. Is Zend_Acl the only way to do this?…
Rex89
  • 153
  • 1
  • 3
  • 12
1
vote
1 answer

Zend_Acl and a dynamic Assert

I'm trying to imply some dynamic assertions into my Zend code and have been using an article by [Ralph Schindler][1] but I couldn't get it to work. What I wanna do is make an "allow" rule in de Acl that checks if the person logged in is actually…
Michael Nieuwenhuizen
  • 101
  • 1
  • 10
1
vote
1 answer

Dynamic custom ACL in zend framework?

I need a solution where authenticated users are allowed access to certain Controllers/Actions based not on their user type :ie. admin or normal user (although I may add this using standard ACL later) but according to the current status of their…
dimbo
  • 817
  • 1
  • 11
  • 25
1
vote
1 answer

Zend ACL class not being found by FrontController

I think its a simple path issue here - but I've spent last 2 hours trying various combinations but not able to resolve this. The code is working fine on my windows system but when I upload it to my hosting site on linux OS - it doesn't find the ACL…
Gublooo
  • 2,550
  • 8
  • 54
  • 91
1
vote
2 answers

Assign multiple roles in Zend_Navigation using Zend_ACL in Zend Framework PHP?

I can't get my Zend_Navigation to work properly, When logging in user with AUth/Doctrine, I am pulling out the roles assigned to the user (usually it's a few of them) from a Many-to-many table, Then in the bootstrap.php on line: …
Alchemication
  • 11
  • 2
1
vote
1 answer

Zend_Acl and Zend_Auth api key approach

What's a good way to implement api keys for accessing specific controller actions using Zend MVC? I currently have Zend_Acl in combination Zend_Auth using session cookies, but I want some actions to be crontabbed, while password protected through…
Jon Skarpeteig
  • 4,118
  • 7
  • 34
  • 53
1
vote
1 answer

How to setup Module Specific ACL Resource?

Zend's Acl allows the resource to be created in controller only But, the controllers might be on any module not just only the default module. So, I read some article off the internet, I found one and tried this: $acl -> addResource(new…
mrN
  • 3,734
  • 15
  • 58
  • 82
1
vote
1 answer

Duplicate DB sessions created upon Zend_Auth login

I must be doing something wrong. I can't seem to find the answer to my problem anywhere on the Web, and this generally means that the solution is so simple that no one needs an answer on it. I am using a database to store my session. I set it up…
Wes
  • 399
  • 5
  • 14
1 2
3
9 10