[FLOW3-general] Modify role dependent Access Denied message
Andreas Förthner
andreas.foerthner at netlogix.de
Mon Oct 31 10:26:37 CET 2011
Hi,
I think AOP would be the fastest way to go here, indeed. But in fact there
was a reason why this message is that short. It was originally intended to
be the last resort and not meant to be shown in usual access denied cases.
What I thought here was, that you modify your views according to the
current situation, i.e. you never see a link to some restricted resource,
or at least those links will trigger authentication and call an
authentication entry point. However, if you have good use cases, why we
would need a nice access denied view, we could add this simply as a
feature for FLOW3 1.1.
Looking forward to your responses.
Greets Andi
Am 26.10.11 23:20 schrieb "Peter Russ" unter <peter.russ at 4many.net>:
>--- Original Nachricht ---
>Absender: Bernhard Fischer
>Datum: 26.10.2011 10:48:
>>>> Hi all,
>>>>
>>>> i always get the expressionless "Access Denied!" message if a method,
>>>> based on it's role, will be denied. What's the right way to inject a
>>>> customized view to inform the already logged in user, that he does not
>>>> have enough rights to use this method or action?
>>>>
>>>> Anyone out there to make a proposal?
>>>>
>>>> Bernhard
>>>
>>> I would try to add an aspect around
>>>
>>>\TYPO3\FLOW3\Security\Aspect\setAccessDeniedResponseHeader->setAccessDen
>>>iedResponseHeader
>>>
>>>
>> I also had the awful feeling that this might be the proper way. I will
>> have a closer look on AOP.
>
>awful? AOP is the right way to go!
>
>--
>Fiat lux! Docendo discimus.
>
Andreas Förthner
Leiter Web-Entwicklung
Telefon: +49 (911) 539909 - 0
E-Mail: andreas.foerthner at netlogix.de
Website: media.netlogix.de
--
netlogix GmbH & Co. KG
IT-Services | IT-Training | Media
Andernacher Straße 53 | 90411 Nürnberg
Telefon: +49 (911) 539909 - 0 | Fax: +49 (911) 539909 - 99
E-Mail: info at netlogix.de | Internet: http://www.netlogix.de
netlogix GmbH & Co. KG ist eingetragen am Amtsgericht Nürnberg (HRA 13338)
Persönlich haftende Gesellschafterin: netlogix Verwaltungs GmbH (HRB 20634)
Umsatzsteuer-Identifikationsnummer: DE 233472254
Geschäftsführer: Stefan Buchta, Matthias Schmidt
_____________________________
>uon GbR
>
>http://www.uon.li
>http://www.xing.com/profile/Peter_Russ
>_______________________________________________
>FLOW3-general mailing list
>FLOW3-general at lists.typo3.org
>http://lists.typo3.org/cgi-bin/mailman/listinfo/flow3-general
More information about the FLOW3-general
mailing list