[FLOW3-general] Problem with setting proper methods-based policies

Andreas Förthner andreas.foerthner at netlogix.de
Wed Oct 17 10:08:07 CEST 2012 

Hi Francois,

Interesting use case, however I would have expected the same result as you have. So this is probably a bug. For a quick fix you could try to exclude the timeline action in your first resource's regex.

Greets Andi

Von: François Suter <fsu-lists at cobweb.ch<mailto:fsu-lists at cobweb.ch>>
Organisation: TYPO3 Association
Antworten an: General discussion about FLOW3 <flow3-general at lists.typo3.org<mailto:flow3-general at lists.typo3.org>>
Datum: Mittwoch, 17. Oktober 2012 08:54
An: "flow3-general at lists.typo3.org<mailto:flow3-general at lists.typo3.org>" <flow3-general at lists.typo3.org<mailto:flow3-general at lists.typo3.org>>
Betreff: Re: [FLOW3-general] Problem with setting proper methods-based policies

Hi again,

So can anyone help with this, please?

Thanks in advance.

François

Hi all,

(posting again, as I realized I sent it to the wrong list the first
time. Sorry).

I have trouble setting a proper policy for the following scenario:

Consider a controller with a lot methods. All are reserved for users
with the "Administrator" role and one may be accessed by users with a
"Client" role.

I have tried the following policy:

resources:
methods:
Cobweb_Monitoring_EventManagement:
'method(Cobweb\Monitoring\Controller\EventController->(.*)Action())'
Cobweb_Monitoring_Timeline:
'method(Cobweb\Monitoring\Controller\EventController->timelineAction())'
roles:
Administrator: []
Client: []
acls:
Administrator:
methods:
Cobweb_Monitoring_EventManagement: GRANT
Client:
methods:
Cobweb_Monitoring_Timeline: GRANT

My hope was that the more specific "timeline" action would be considered
and allowed for "Client" roles, but that does not work. How should I
handle this?


Dipl.-Inf. Andreas Förthner
Leiter Web-Entwicklung

Telefon: +49 (911) 539909 - 0
E-Mail: andreas.foerthner at netlogix.de
Website: media.netlogix.de<http://media.netlogix.de>

--
netlogix GmbH & Co. KG
IT-Services | IT-Training | Media
Andernacher Straße 53 | 90411 Nürnberg
Telefon: +49 (911) 539909 - 0 | Fax: +49 (911) 539909 - 99
E-Mail: info at netlogix.de<mailto:info at netlogix.de> | Internet: www.netlogix.de<http://www.netlogix.de/>

netlogix GmbH & Co. KG ist eingetragen am Amtsgericht Nürnberg (HRA 13338)
Persönlich haftende Gesellschafterin: netlogix Verwaltungs GmbH (HRB 20634)
Umsatzsteuer-Identifikationsnummer: DE 233472254
Geschäftsführer: Stefan Buchta, Matthias Schmidt

_______________________________________________
FLOW3-general mailing list
FLOW3-general at lists.typo3.org<mailto:FLOW3-general at lists.typo3.org>
http://lists.typo3.org/cgi-bin/mailman/listinfo/flow3-general

More information about the FLOW3-general mailing list