2017 © Pedro PelĂĄez
 

library zf2-permissions

Zend Framework 2 Permissions extras

image

kanellov/zf2-permissions

Zend Framework 2 Permissions extras

  • Tuesday, March 3, 2015
  • by kanellov
  • Repository
  • 1 Watchers
  • 0 Stars
  • 7 Installations
  • PHP
  • 0 Dependents
  • 0 Suggesters
  • 0 Forks
  • 0 Open issues
  • 4 Versions
  • 0 % Grown

The README.md

zf2-permissions

Build Status, (*1)

Adds extra functionality for Component_ZendPermissionsRbac and Component_ZendPermissionsAcl, (*2)

Installation

Install composer in your project:, (*3)

curl -s https://getcomposer.org/installer | php

Create a composer.json file in your project root:, (*4)

{
    "require": {
        "kanellov/zf2-permissions": "dev-master"
    }
}

Install via composer:, (*5)

php composer.phar install

Add this line to your application’s index.php file:, (*6)

<?php
require 'vendor/autoload.php';

System Requirements

You need PHP >= 5.3.23., (*7)

Acl Callback Assertions

<?php
use Zend\Permissions\Acl\Acl;
use Knlv\Zf2\Permissions\Acl\Assertion\Callback;

$validIps = array(
    10.10.10.10,
);
$acl = new Acl();
$assertion = new Callback(function ($acl, $role, $resource, $privilege) use ($validIps) {
    return in_array($_SERVER['REMOTE_ADDR'], $validIps);
});
$acl->allow(null, null, null, $assertion);

See also Writing Conditional ACL Rules with Assertions, (*8)

Rbac Callback Assertions

<?php
use Zend\Permissions\Rbac\Rbac;
use Knlv\Zf2\Permissions\Rbac\Assertion\Callback;

// User is assigned the foo role with id 5
// News article belongs to userId 5
// Jazz article belongs to userId 6

$rbac = new Rbac();
$user = $mySessionObject->getUser();
$news = $articleService->getArticle(5);
$jazz = $articleService->getArticle(6);

$rbac->addRole($user->getRole());
$rbac->getRole($user->getRole())->addPermission('edit.article');

$assertionCb = function ($user, $article) {
    return function ($rbac) use ($user, $article) {
        return $user->getId() == $article->getUserId();
    };
};

// true always - bad!
if ($rbac->isGranted($user->getRole(), 'edit.article')) {
    // hacks another user's article
}

$assertion = new Callback($assertionCb($user, $news));

// true for user id 5, because he belongs to write group and user id matches
if ($rbac->isGranted($user->getRole(), 'edit.article', $assertion)) {
    // edits his own article
}

$assertion = new Callback($assertionCb($user, $jazz));

// false for user id 5
if ($rbac->isGranted($user->getRole(), 'edit.article', $assertion)) {
    // can not edit another user's article
}

See also: Dynamic Assertions, (*9)

The Versions

03/03 2015

dev-master

9999999-dev https://github.com/kanellov/zf2-permissions

Zend Framework 2 Permissions extras

  Sources   Download

MIT

The Requires

 

The Development Requires

by Vassilis Kanellopoulos

acl permissions zend framework rbac

03/03 2015

0.1.0

0.1.0.0 https://github.com/kanellov/zf2-permissions

Zend Framework 2 Permissions extras

  Sources   Download

MIT

The Requires

 

The Development Requires

by Vassilis Kanellopoulos

acl permissions zend framework rbac

03/03 2015

dev-develop

dev-develop https://github.com/kanellov/zf2-permissions

Zend Framework 2 Permissions extras

  Sources   Download

MIT

The Requires

 

The Development Requires

by Vassilis Kanellopoulos

acl permissions zend framework rbac

25/02 2015

0.0.1

0.0.1.0 https://github.com/kanellov/zf2-permissions

Zend Framework 2 Permissions extras

  Sources   Download

MIT

The Requires

 

The Development Requires

by Vassilis Kanellopoulos

acl permissions zend framework rbac