Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make actions available for permission checks on user #37

Open
graste opened this issue Jan 12, 2017 · 0 comments
Open

Make actions available for permission checks on user #37

graste opened this issue Jan 12, 2017 · 0 comments

Comments

@graste
Copy link
Member

graste commented Jan 12, 2017
edited
Loading

ATM the action credentials are not working with the current setup of the PermissionService and the ACL usage in the AgaviAclSecurityUser.

Possible solution:

  • composer config-build process creates a list of possible actions and methods (vendor.package.type.action::read etc.)
  • PermissionService implements wildcard logic to allow/deny action access on the ACL used by the user

Syntax for the access_control.xml may be something along the following:

<permissions scope="vendor.package.type.*">
    <deny>method::*</deny>
    <allow>method::read</allow>
</permissions>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@graste