Remarkable

15 Jan, 2006

This morning I tried unsuccessfully to get CakePHP's built-in 'Access Control List' feature working. I get the impression that ACL is bleeding edge stuff, and that the current documentaion is not accurate (or it may be that the functionality just doesn't quite work right out of the box.) That's OK. CakePHP is still quite young, and for my current purposes ACL looked like overkill anyway.

So this afternoon I set about implementing my own lightweight user authentication system, incorporating 'Users' and 'Roles' tables in the database, with corresponding CakePHP controllers and associations. Scaffolding provided instant create/edit/list/delete functionality for users and roles, including the ability to assign roles to users and vice versa. Total set-up time: maybe 30 minutes for everything.

The bigger hurdle was implementing an authentication controller for handling the login form, logging in, and logging out. This took a bit longer, but at every turn I discovered that the typical minutiae (Setting a message to be displayed on the following screen, managing session variables, et cetera) had already been taken care of for me in the base Controller class, leaving me to spend most of my time worrying about logic instead of implementation. This is good stuff.

The next step will be to write a controller 'Component' for managing user access to controller functions.

Tagged:

Daniel Hofstetter wrote 8 years 24 weeks ago

Yeah, the dbAcl stuff is

Yeah, the dbAcl stuff is broken. I hope it will be fixed soon.

@captain_science so glad you lliked them, especially the bow tie- it was a bit of a crap shoot! — 3 years 30 weeks ago
Not sure we had enough pie http://flic.kr/p/8WnSf2 — 3 years 31 weeks ago
What part of "don't discuss politics in the lodge" is so &@$!?ing hard to understand? — 3 years 33 weeks ago
photo.jpg http://flic.kr/p/8Hy5pe — 3 years 38 weeks ago
It's about time http://flic.kr/p/8GcTJo — 3 years 39 weeks ago

2014
- July (1)
2011
- October (1)
- August (4)
2010
- August (2)
- May (3)
- March (2)
- February (3)
- January (6)
2009
- December (3)
- November (1)
- October (1)
- September (2)
- August (2)
- July (2)
- June (2)
- April (3)
- March (2)
- February (10)
- January (11)
2008
- December (4)
- November (2)
- October (1)
- September (1)
- August (3)
- July (1)
- January (4)
2007
- December (1)
- October (3)
- September (5)
- July (1)
- June (2)
- May (10)
- April (11)
- March (2)
2006
- December (1)
- November (6)
- October (6)
- September (4)
- August (8)
- July (5)
- June (7)
- May (8)
- April (23)
- March (16)
- February (12)
- January (21)
2005
- December (19)
- November (31)
- October (4)
- September (2)
- August (2)
- May (2)
- April (7)
- March (5)
- February (4)
- January (21)
2004
- December (8)
- November (11)
- October (5)
- September (3)
- August (8)
- July (5)
- June (10)
- May (22)
- April (4)
- March (9)
- February (20)
- January (41)
2003
- December (5)
- October (8)
- September (2)
- August (2)
- June (4)
- May (2)
- April (1)
- March (7)
2002
- October (2)
- September (3)
- August (4)
- July (2)
- May (7)
- April (5)
- March (6)
- February (26)
- January (8)
2001
- December (35)
- November (40)
- October (13)
- September (1)
- March (3)
- February (4)
2000
- December (2)
- September (1)

Andy Chase
(978) 297-6402
andychase [at] gmail.com
GPG/PGP Public Key

Andy Chase

Also

1 comment

Yeah, the dbAcl stuff is

Popular

Recently Perused

Twitter

Recently

Older

Contact