https://github.com/digitaledgeit/zf2-authorisation-module

Digital Edge IT authorisation module for Zend Framework v2
https://github.com/digitaledgeit/zf2-authorisation-module

Last synced: 22 days ago
JSON representation

Digital Edge IT authorisation module for Zend Framework v2

• Host: GitHub
• URL: https://github.com/digitaledgeit/zf2-authorisation-module
• Owner: digitaledgeit
• Created: 2013-11-25T10:15:35.000Z (over 12 years ago)
• Default Branch: master
• Last Pushed: 2014-11-04T10:58:44.000Z (over 11 years ago)
• Last Synced: 2025-02-25T12:03:22.173Z (over 1 year ago)
• Language: PHP
• Size: 184 KB
• Stars: 0
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          

# Zend Framework 2 module: DeitAuthorisationModule #

This module is a simple reusable access control module which restricts access to 

your controllers based on the user's role.

To restrict access to your controllers, add a new config entry in your module:

	'deit_authorisation' => array(

		/**

		 * The service name of the unauthorised strategy

		 * @type    string

		 */

		'strategy'  => 'DeitAuthorisationModule\View\ViewStrategy',

		/**

		 * The view template to display when the user is unauthorised

		 * @type    string

		 */

		'template'  => 'error/401',

		/**

		 * The route to redirect to when the user is unauthorised

		 * @type    string

		 */

		'route'     => 'log-in',

		/**

		 * The access control list

		 * @var array

		 */

		'acl'       => array(

			'roles'     => array(

				'guest',

				'admin' => 'guest'                                              //the admin role inherits guest permissions

			),

			'resources' => array(

				'DeitAuthenticationModule\\Controller\\Authentication\\log-in',

				'DeitAuthenticationModule\\Controller\\Authentication\\log-out',

				'DeitAuthenticationModule\\Controller\\Authentication',

				'DeitAuthenticationModule',

				'Application',

			),

			'rules'     => array(

				'allow'     => array(

					'DeitAuthenticationModule\\Controller\\Authentication\\log-in'  => 'guest',  //restrict access to a specific action

					'DeitAuthenticationModule\\Controller\\Authentication\\log-out' => 'admin' ,

					//'DeitAuthenticationModule\\Controller\\Authentication'        => 'admin',  //restrict access to a specific controller

					'Application'                                                   => 'admin',  //restrict access to a specific module

				),

			),

		),

		/**

		 * The default role used when no authenticated identity is present or the identity's role can't be discovered

		 * @var string

		 */

		'default_role'  => 'guest',

		/**

		 * The role resolver used to discover the role of an identity when preset

		 * @var callable

		 */

		'role_resolver' => function($identity) {

			if ($identity) {                                                     //this will be different if you have multiple roles which your authenticated users can be

				return 'admin';

			} else {

				return 'guest';

			}

		},

	),