Hoy comenc\u00c3\u00a9 a trabajar sistema utilizando CakePHP en el cual necesito un control de acceso para distinguir entre dos usuarios, un administrador y un usuario normal, no quise usar ACL debido a lo b\u00c3\u00a1sico de necesidad as\u00c3\u00ad que me puse a desarrollar mi propio sistema de control de acceso, con una pequeña variante en el software.<\/p>\n
La soluci\u00c3\u00b3n es la siguiente:<\/p>\n
En mi app_controller.php<\/p>\n
\r\n function beforeFilter() {\r\n if($this->Session->check(\"Auth.User\")) {\r\n if($this->_permisos($this->params,$this->Session->read(\"Auth.User.group_id\")) == false) {\r\n $this->Session->setFlash(\"No tienes permiso para ingresar a esta area\");\r\n $this->redirect(\"\/\");\r\n }\r\n }\r\n }\r\n function _permisos($params,$group) {\r\n\r\n $normal_permitido = array(\r\n 'users' => array(),\r\n 'tickets'=>array('add','view','index'),\r\n 'comments'=>array('add','view','index'),\r\n 'groups' => array(),\r\n 'types' => array(),\r\n 'subareas' => array(),\r\n 'areas' => array(),\r\n 'pages' => array('display')\r\n );\r\n\r\n if($group != 1) {\r\n if(array_key_exists($params[\"controller\"],$normal_permitido)) {\r\n if(in_array($params[\"action\"], $normal_permitido[$params[\"controller\"]])) {\r\n return true;\r\n }\r\n else {\r\n return false;\r\n }\r\n }\r\n else {\r\n return false;\r\n }\r\n } else {\r\n return true;\r\n }\r\n \r\n\r\n }\r\n<\/pre>\nLa idea es super simple si el usuario no es administrador solo podr\u00c3\u00a1 acceder a ciertas acciones los controladores. En el arreglo $normal_permitido se almacenan los controladores y las acciones que tiene permitido visitar.<\/p>\n
Ojala les sirva. <\/p>\n
Happy baking!<\/p>\n","protected":false},"excerpt":{"rendered":"
Hoy comenc\u00c3\u00a9 a trabajar sistema utilizando CakePHP en el cual necesito un control de acceso para distinguir entre dos usuarios, un administrador y un usuario normal, no quise usar ACL debido a lo b\u00c3\u00a1sico de necesidad as\u00c3\u00ad que me puse a desarrollar mi propio sistema de control de acceso, con una pequeña variante en el […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[36,15,33,26],"tags":[],"class_list":["post-323","post","type-post","status-publish","format-standard","hentry","category-cakephp","category-php","category-programacion","category-tips"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p5Pxa3-5d","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/posts\/323","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/comments?post=323"}],"version-history":[{"count":2,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/posts\/323\/revisions"}],"predecessor-version":[{"id":461,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/posts\/323\/revisions\/461"}],"wp:attachment":[{"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/media?parent=323"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/categories?post=323"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/stefano.salvatori.cl\/blog\/wp-json\/wp\/v2\/tags?post=323"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}