[FLOW3-general] How to secure a controller?
Qbus | Axel Wüstemann
awu at qbus.de
Sun Jan 27 14:58:30 CET 2013
Because I'm working on a learning project, I did not have time to bring
the things further. Now I tried again, but it does not work.
Remember: I want a simple login to an application, which functions are
completely behind the login. So I need a rool, to protect all
controllers but not the LoginControllers.
I now tried the following. According to
http://www.php-resource.de/tutorials/tutorial,10,Regulaere-Ausdruecke.htm
"(?<!Text1)text2" meens "contains text2, if text 1 not occures".
So this should properly mean "all Controllers wich not start with
'Login' and all actions wich not start with 'initialize'".
As I said, it does not work, no redirect to the LoginController occures,
if I call the StandardController.
resources:
entities: []
methods:
SecuredArea:
'method(QBUS\BestDesQ\Controller\(?<!Login)Controller->(?<!initialize).*Action())'
roles:
Administrator: []
acls:
Administrator:
methods:
SecuredArea: GRANT
It would be great, if someone could assis me further to get this tu run.
Regards
Axel
More information about the Flow
mailing list