.. class continues...
As you can see, we allow the member role access to one set of actions (#1) and administrators access to
another set (#2). We don??™t need to explicitly tell the system to allow administrators access to the member
actions as the administrators role is a child of the member role and so inherits those permissions automatically.
Licensed to Menshu You
Please post comments or corrections to the Author Online forum at
http://www.manning-sandbox.com/forum.jspa?forumID=329
6.5 Summary
In this chapter we have looked at the two related concepts of authorisation and authentication. Ensuing that we
know the identity of the current user is the process of authorisation and Zend_Auth is an intuitive and
comprehensive component to that allows for checking against different data sources with more being added.
By leveraging Zend_Session, Zend_Auth provides a one-stop-shop solution and enables us to look up the
currently logged on user very easily.
Choosing an authentication strategy to ensure that only users with the correct privileges are allowed access
to certain parts of the application is an art in itself. We have explored a solution that uses a action helper to
easily limit access to controller actions without having to do lots of set up independently of the controller being
protected.
Pages:
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210