Questions tagged [zend-acl]

Zend ACL is an Access Control List class in the Zend Framework, an open source, object-oriented web application framework implemented in PHP 5 and licensed under the New BSD License.

Zend_Acl provides a lightweight and flexible access control list (ACL) implementation for privileges management. In general, an application may utilize such ACL's to control access to certain protected objects by other requesting objects.

For the purposes of this documentation:

a resource is an object to which access is controlled.
a role is an object that may request access to a Resource.

Put simply, roles request access to resources. For example, if a parking attendant requests access to a car, then the parking attendant is the requesting role, and the car is the resource, since access to the car may not be granted to everyone.

Through the specification and use of an ACL, an application may control how roles are granted access to resources.

Questions tagged with zend-acl should show they are implementing the Zend_Acl class from the Zend Framework.

144 questions

vote

1 answer

Having problems combining Zend_Acl and Zend_Navigation

I have a Federico_Plugin_Acl that extends Zend_Controller_Plugin_Abstract which looks like this: class Federico_Plugin_Acl extends Zend_Controller_Plugin_Abstract { private $_acl = null; private $_auth = null; const DEFAULT_ROLE = 'guest'; public…

zend-framework zend-acl

asked Jun 09 '11 at 14:23

la_f0ka

1,773
3
23
44

vote

0 answers

Would you use Assertion or Dynamic Acl?

I'm implementing an AuthorizationService, basically it extends Zend_Acl and override authenticate() method to work with my own adapter. Let's say I've User, Article, ArticleComment, ArticleVote, CommentVote. My rules are simple: An Member can edit…

php authorization service-layer zend-acl assertion

asked May 16 '11 at 20:34

JohnT

vote

2 answers

How do I combine Zend_Ath, Zend_Acl and partialview for the authentication and resource control

According to Randomness will get you everywhere. Ryan’s Blog the action stack component of Zend Framework is un-needed and that a partial view can be combined with Zend_Acl and Zend_Auth for the purpose of authenticating and controlling resources.…

zend-framework partial-views zend-auth zend-acl

asked Apr 11 '11 at 02:18

Napoleon

vote

1 answer

how to get role from Zend_Auth/Zend_ACL when using a Doctrine adapter? getting all work together

I'm using Zend_Auth with a project using doctrine.I believe every bootstrapping is done correctly and i can log in. my adapter looks like this: class Abra_Auth_Adapter_Doctrine implements Zend_Auth_Adapter_Interface { protected…

php zend-framework doctrine zend-auth zend-acl

asked Jan 12 '11 at 00:59

black sensei

6,528
22
109
188

vote

1 answer

zend acl multiple access lists/levels

I'm building a portal where user and companies can join. Users can either be independent or working under a company. There is some basic access which is available to all users regardless of their type (independent or associated with a company).…

zend-framework zend-auth zend-acl

asked Jan 04 '11 at 09:58

Bryan

vote

0 answers

Serialization of Closure is not allowed - ZF2 and BjyAuthorize

So I am using BjyAuthorize for route guards & rules for resources, I am using assertion in rule providers of BjyAuthorize but they seem to throw this error Fatal error: Uncaught exception 'Exception' with message 'Serialization of 'Closure' is not…

php zend-framework zend-framework2 zend-acl bjyauthorize

asked Feb 08 '17 at 08:49

Haris Mehmood

vote

1 answer

How to pass custom data to a Zend Acl custom Assertion

The Zend Acl docs show an example on using a custom assertion: $acl->allow(null, null, null, new MyCustomAssertion()); The problem is that the above code is executed while creating the rules not while checking them. In my controller I can only do…

php acl zend-acl

asked Jan 13 '17 at 18:19

Julian

8,808
8
51
90

vote

4 answers

Zend_Acl Whitelist VS Blacklist?

Should i use a whitelist or blacklist approach to Zend_Acl? By that i mean deny any and all resources to everyone and write each single allow case for each role [blacklist] or allow all resources and write each deny care for each role [whitelist]

php zend-framework zend-acl

asked Sep 24 '10 at 21:07

BRampersad

vote

1 answer

Zend_Acl - Role per resource

I'm trying to implement Zend_Acl. I've never used it before and whilst I can get basic acl stuff working on the controller/action level, I need users to have different roles on different projects, say admin, editor, etc. So a user could create…

zend-framework zend-acl

asked Sep 23 '10 at 21:22

Steve P. Sharpe

vote

1 answer

HTTP authentication and sessions

I've been trying to figure out how to do a HTTP authentication and then use the session to display pages in a webview in my android app. Could someone please provide som guidance (I would very much appretiate some sample code if possible). I use…

android zend-framework http-authentication zend-acl

asked Sep 11 '10 at 20:31

user439781

vote

3 answers

User-based dynamic permissions with Zend_ACL

Is it possible to assign users individual permissions based on dynamic elements in a Zend Framework application? I have tables like so: clients (id, name, contact_name, contact_number, logo, active) modules (id, client_id, module_id,…

php zend-framework zend-acl

asked Aug 13 '10 at 14:48

Ben

vote

0 answers

ZfcUser and Bjyauthorize: setup routing to different actions for different roles after authentication

I am new to Zend Framework 2. I am using ZfcUser and Bjyauthorize. I have three different roles: admin, instructor, and student. Each of them is supposed to get different views and access to different actions after authentication. I am familiar…

zend-framework2 zfcuser zend-acl bjyauthorize

asked May 12 '15 at 21:03

vlr

vote

1 answer

Denying access to action with Zend ACL causes Navigation link to disappear

I have a schedule controller with four actions: class ScheduleController extends Zend_Controller_Action { public function indexAction(){ ... } public function viewAction(){ ... } public function addAction(){ ... } public function…

zend-framework zend-navigation zend-acl

asked Jun 03 '10 at 06:14

mrbubblesort

vote

1 answer

Acl vs RBAC in ZF2

I want to incorporate a component of access control in my application, I saw that ZF2 offer: Zend /permissions/Acl and Zend /permissions/RBAC, I would like to know which is more efficient and secured , and what about Zfc-RBAC ? thank you .

php security zend-framework2 zend-acl zfc-rbac

asked Oct 14 '14 at 10:49

AiD

vote

1 answer

Zend ACL and access to specific objects

I need an ACL for my application layer and I've been looking into Zend ACL which seems to cover my needs but I'm confused by the following [1]: For example, if a default rule is to be applied to each building in a city, one would simply assign…

php zend-framework2 zend-acl

asked Sep 07 '14 at 04:19

Luke

20,878
35
119
178

Prev 1 2 3

…

9 10 Next