Class ControllerAuthorize
An authorization adapter for AuthComponent. Provides the ability to authorize using a controller callback. Your controller's isAuthorized() method should return a boolean to indicate whether or not the user is authorized.
public function isAuthorized($user)
{
if ($this->request->getParam('admin')) {
return $user['role'] === 'admin';
}
return !empty($user);
} The above is simple implementation that would only authorize users of the 'admin' role to access admin routing.
- Cake\Auth\BaseAuthorize uses Cake\Core\InstanceConfigTrait
-
Cake\Auth\ControllerAuthorize
See: \Cake\Controller\Component\AuthComponent::$authenticate
Location: Auth/ControllerAuthorize.php
Properties summary
- Controller for the request.
$_Controllerprotected
Inherited Properties
Method Summary
- __construct() publicConstructor
- authorize() publicChecks user authorization using a controller callback.
- controller() public
Get/set the controller this authorize object will be working with. Also checks that isAuthorized is implemented.
Method Detail
__construct()source public
__construct( Cake\Controller\ComponentRegistry $registry , array $config [] )
Constructor
Parameters
-
Cake\Controller\ComponentRegistry$registry - The controller for this request.
- array
$configoptional [] - An array of config. This class does not use any config.
Overrides
Cake\Auth\BaseAuthorize::__construct() authorize()source public
authorize( array|ArrayAccess $user , Cake\Http\ServerRequest $request )
Checks user authorization using a controller callback.
Parameters
- array|ArrayAccess
$user - Active user data
-
Cake\Http\ServerRequest$request - Request instance.
Returns
booleancontroller()source public
controller( Cake\Controller\Controller $controller null )
Get/set the controller this authorize object will be working with. Also checks that isAuthorized is implemented.
Parameters
-
Cake\Controller\Controller$controlleroptional null - null to get, a controller to set.
Returns
Cake\Controller\ControllerThrows
Cake\Core\Exception\ExceptionIf controller does not have method
isAuthorized().Methods used from Cake\Core\InstanceConfigTrait
_configDelete()source protected
_configDelete( string $key )
Deletes a single config key.
Parameters
- string
$key - Key to delete.
Throws
Cake\Core\Exception\Exceptionif attempting to clobber existing config
_configRead()source protected
_configRead( string|null $key )
Reads a config key.
Parameters
- string|null
$key - Key to read.
Returns
mixed_configWrite()source protected
_configWrite( string|array $key , mixed $value , boolean|string $merge false )
Writes a config key.
Parameters
- string|array
$key - Key to write to.
- mixed
$value - Value to write.
- boolean|string
$mergeoptional false True to merge recursively, 'shallow' for simple merge, false to overwrite, defaults to false.
Throws
Cake\Core\Exception\Exceptionif attempting to clobber existing config
config()source public
config( string|array|null $key null , mixed|null $value null , boolean $merge true )
Gets/Sets the config.
Usage
Reading the whole config:
$this->config();
Reading a specific value:
$this->config('key'); Reading a nested value:
$this->config('some.nested.key'); Setting a specific value:
$this->config('key', $value); Setting a nested value:
$this->config('some.nested.key', $value); Updating multiple config settings at the same time:
$this->config(['one' => 'value', 'another' => 'value']);
Deprecated
3.4.0 use setConfig()/getConfig() instead.Parameters
- string|array|null
$keyoptional null - The key to get/set, or a complete array of configs.
- mixed|null
$valueoptional null - The value to set.
- boolean
$mergeoptional true - Whether to recursively merge or overwrite existing config, defaults to true.
Returns
mixedConfig value being read, or the object itself on write operations.
Throws
Cake\Core\Exception\ExceptionWhen trying to set a key that is invalid.
configShallow()source public
configShallow( string|array $key , mixed|null $value null )
Merge provided config with existing config. Unlike config() which does a recursive merge for nested keys, this method does a simple merge.
Setting a specific value:
$this->configShallow('key', $value); Setting a nested value:
$this->configShallow('some.nested.key', $value); Updating multiple config settings at the same time:
$this->configShallow(['one' => 'value', 'another' => 'value']);
Parameters
- string|array
$key - The key to set, or a complete array of configs.
- mixed|null
$valueoptional null - The value to set.
Returns
$this
getConfig()source public
getConfig( string|null $key null , mixed $default null )
Returns the config.
Usage
Reading the whole config:
$this->getConfig();
Reading a specific value:
$this->getConfig('key'); Reading a nested value:
$this->getConfig('some.nested.key'); Reading with default value:
$this->getConfig('some-key', 'default-value'); Parameters
- string|null
$keyoptional null - The key to get or null for the whole config.
- mixed
$defaultoptional null - The return value when the key does not exist.
Returns
mixedConfig value being read.
setConfig()source public
setConfig( string|array $key , mixed|null $value null , boolean $merge true )
Sets the config.
Usage
Setting a specific value:
$this->setConfig('key', $value); Setting a nested value:
$this->setConfig('some.nested.key', $value); Updating multiple config settings at the same time:
$this->setConfig(['one' => 'value', 'another' => 'value']);
Parameters
- string|array
$key - The key to set, or a complete array of configs.
- mixed|null
$valueoptional null - The value to set.
- boolean
$mergeoptional true - Whether to recursively merge or overwrite existing config, defaults to true.
Returns
$this
Throws
Cake\Core\Exception\ExceptionWhen trying to set a key that is invalid.
Properties detail
© 2005–2017 The Cake Software Foundation, Inc.
Licensed under the MIT License.
CakePHP is a registered trademark of Cake Software Foundation, Inc.
We are not endorsed by or affiliated with CakePHP.
https://api.cakephp.org/3.4/class-Cake.Auth.ControllerAuthorize.html