A simple Cakephp ACL based authentication plugin
- Plugin AclExtras
- jQuery library enabled in layout
-
Clone the repo or download a tarball and install it into app/Plugin/Cauth or in any of your plugin Paths.
-
Import “Cauth.sql” in your database.
-
Enable plugin at “boostrap.php”.
-
Add the following code in AppController.php
public $helpers = array ('Form', 'Time', 'Html', 'Session', 'Js'); public $counter = 0; public $components = array ( 'RequestHandler', 'Acl', 'Auth' => array ( 'authError' => 'Did you really think you are allowed to see that?', 'authorize' => array ( 'Actions' => array ( 'actionPath' => 'controllers', 'userModel' => 'Cauth.User', ), ) ), 'Session' );
public function beforeFilter() {
//Configure AuthComponent $this->Auth->loginAction = array ('plugin' => 'cauth', 'controller' => 'users', 'action' => 'login'); $this->Auth->logoutRedirect = array ('plugin' => 'cauth', 'controller' => 'users', 'action' => 'login'); $this->Auth->loginRedirect = array ('plugin' => '', 'controller' => 'pages', 'action' => 'display');
}
-
We need to create group and user. As without any user we can not create, so for 1st time create we will allow add action in both user and group controller. public function beforeFilter() { parent::beforeFilter(); $this->Auth->allow('add'); }
-
Add an new group, say "Administrator".
-
Add a new user under "Administrator" group.
-
Now remove or block the codes in both controller.
-
Allow 'initDB', 'acoSync' and 'index' action from utils controller. public function beforeFilter() { parent::beforeFilter(); $this->Auth->allow('initDB', 'acoSync', 'index'); }
-
Again remove or block these code from utils controller.
-
Now Cauth is ready to use.
- A complete ACL based group permission option
- Rename option for controllers and action for user readability.
- Hiding the actions from user that is not necessary for them but has used to perform some internal actions.