[Flow] Deny access by policy not working
Mario Beiser
mariobeiser at googlemail.com
Sat Jun 22 11:54:27 CEST 2013
Hi there,
my policy.yaml:
resources:
methods:
RestrictedArea:
'method(Test\Package\Controller\ItemController->*.Action())'
roles:
Redakteur: []
Admin: []
acls:
Admin:
methods:
RestrictedArea: GRANT
Redakteur:
methods:
RestrictedArea: DENY
----------------------
Login is working, fluid viewhelpers are working. The roles are noticed and
I can query the loggedIn accounts on them.
If I login with an Redakteur-Account I can access the "restrictedArea"
without an error.
Fluid viewhelper shows me, that I am a Redakteur, so view is rendered. BUT
it shouldn't.
There should be a redirect.
Any suggestions? Hard to track down.
Thanks in advance
Mario
PS: Version is FLOW3 2.0
More information about the Flow
mailing list