[Flow] Deny access by policy not working
Mario Beiser
mariobeiser at googlemail.com
Sat Jun 22 21:01:02 CEST 2013
Dear Christian,
thanks for explanation. Unfortunately, I can not report success.
I tried out your suggestions, without any changes.
I pulled master again to double check.
@Frans:
Can you second that? No changes with Christian's recommended changes?
2013/6/22 Christian Müller <christian.mueller at typo3.org>
> Hey both of you,
>
> I can at least say it should work with master...
>
>
>
>> Someone any hints how to debug this?
>>
>
> Here is again my policy:
>>> ------------------------------**----------------------
>>> resources:
>>> methods:
>>> RestrictedArea:
>>> 'method(My\Package\Controller\**CalculateController->*())'
>>>
>>
> This at least is wrong, you should understand it similar to a regular
> expression not a filesystem glob, so:
>
> 'method(My\Package\Controller\**CalculateController->.*())'
>
> Would target all methods in the CalculateController (notice the . before
> *), what you really want to do for controllers is target only Actions ->
>
> 'method(My\Package\Controller\**CalculateController->.*Action(**))'
>
> Try that and lets see if it helps.
>
> The Security log in Data/Logs should also give you some insights...
>
> And one additional remark, you rarely should have to DENY a resource,
> because any defined resource that is not explicitly GRANTed will result in
> an implicit deny anyway. You only need to DENY if you want to overrule a
> GRANT and you should try to avoid DENY as much as possible as a DENY cannot
> be overruled anymore.
>
> Cheers,
> Christian
>
> ______________________________**_________________
> Flow mailing list
> Flow at lists.typo3.org
> http://lists.typo3.org/cgi-**bin/mailman/listinfo/flow<http://lists.typo3.org/cgi-bin/mailman/listinfo/flow>
>
--
----------------
Mario Beiser
5, Allèe Francois Mitterand
F-67400 Illkirch-Graffenstaden
email: mariobeiser at googlemail.com
mobile: 0049 170 2469488
More information about the Flow
mailing list