首页 发现 帮助
登录
githab
/
cakephp
2
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: a7bedf10bb
分支列表 标签列表
cakephp
/
tests
/
test_app
/
config
/
acl.php

acl.php 2.3 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. <?php
    2. 

  2. /*
    3. 

  3.  * Test App PHP Based Acl Config File
    4. 

  4.  *
    5. 

  5.  * CakePHP(tm) : Rapid Development Framework (https://cakephp.org)
    6. 

  6.  * Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
    7. 

  7.  *
    8. 

  8.  *  Licensed under The MIT License
    9. 

  9.  *  Redistributions of files must retain the above copyright notice.
    10. 

  10.  *
    11. 

  11.  * @copyright     Copyright (c) Cake Software Foundation, Inc. (https://cakefoundation.org)
    12. 

  12.  * @link          https://cakephp.org CakePHP(tm) Project
    13. 

  13.  * @since         0.10.0
    14. 

  14.  * @license       https://opensource.org/licenses/mit-license.php MIT License
    15. 

  15.  */
    16. 

  16. 

  17. // -------------------------------------
    18. 

  18. // Roles
    19. 

  19. // -------------------------------------
    20. 

  20. $config['roles'] = [
    21. 

  21.     'Role/admin' => null,
    22. 

  22.     'Role/data_acquirer' => null,
    23. 

  23.     'Role/accounting' => null,
    24. 

  24.     'Role/database_manager' => null,
    25. 

  25.     'Role/sales' => null,
    26. 

  26.     'Role/data_analyst' => 'Role/data_acquirer, Role/database_manager',
    27. 

  27.     'Role/reports' => 'Role/data_analyst',
    28. 

  28.     // allow inherited roles to be defined as an array or comma separated list
    29. 

  29.     'Role/manager' => [
    30. 

  30.         'Role/accounting',
    31. 

  31.         'Role/sales',
    32. 

  32.     ],
    33. 

  33.     'Role/accounting_manager' => 'Role/accounting',
    34. 

  34.     // managers
    35. 

  35.     'User/hardy' => 'Role/accounting_manager, Role/reports',
    36. 

  36.     'User/stan' => 'Role/manager',
    37. 

  37.     // accountants
    38. 

  38.     'User/peter' => 'Role/accounting',
    39. 

  39.     'User/jeff' => 'Role/accounting',
    40. 

  40.     // admins
    41. 

  41.     'User/jan' => 'Role/admin',
    42. 

  42.     // database
    43. 

  43.     'User/db_manager_1' => 'Role/database_manager',
    44. 

  44.     'User/db_manager_2' => 'Role/database_manager',
    45. 

  45. ];
    46. 

  46. 

  47. //-------------------------------------
    48. 

  48. // Rules
    49. 

  49. //-------------------------------------
    50. 

  50. $config['rules']['allow'] = [
    51. 

  51.     '/*' => 'Role/admin',
    52. 

  52.     '/controllers/*/manager_*' => 'Role/manager',
    53. 

  53.     '/controllers/reports/*' => 'Role/sales',
    54. 

  54.     '/controllers/invoices/*' => 'Role/accounting',
    55. 

  55.     '/controllers/invoices/edit' => 'User/db_manager_2',
    56. 

  56.     '/controllers/db/*' => 'Role/database_manager',
    57. 

  57.     '/controllers/*/(add|edit|publish)' => 'User/stan',
    58. 

  58.     '/controllers/users/dashboard' => 'Role/default',
    59. 

  59.     // test for case insensitivity
    60. 

  60.     'controllers/Forms/NEW' => 'Role/data_acquirer',
    61. 

  61. ];
    62. 

  62. $config['rules']['deny'] = [
    63. 

  63.     // accountants and sales should not delete anything
    64. 

  64.     '/controllers/*/delete' => [
    65. 

  65.         'Role/sales',
    66. 

  66.         'Role/accounting',
    67. 

  67.     ],
    68. 

  68.     '/controllers/db/drop' => 'User/db_manager_2',
    69. 

  69. ];
    70.