Yea they are not there. In my User class beforeFilter i have:
$this->Auth->allow('login','logout', 'register');
Register is a newer page I created. But add, edit, and index (which are all
the user management views) are still accessible when the user logs in...
even though they are not in the beforeFilter. The odd thing is, in all my
other classes (not User) I can deny ACL priveledges and the users can't
access those views. It just doesn't work for add, edit, and index in the
user. perhaps it's because the user class actsAs ACL in the model?
hahmadi82 wrote:
>
> I had actually tried this exact example for the permissions and it didn't
> work...
>
>
> hahmadi82 wrote:
>>
>> Hi,
>>
>> I have set up my ACL based on this tutorial:
>>
>> http://komunitasweb.com/2009/03/cakephp-acl-tutorial-what-and-how/
>>
>> This tutorial has a user management system with add, delete, index, and
>> edit functionality. The problem I'm having is that no matter how I set up
>> my aros_acos permissions, the Users always have access to these pages
>> once logged in. I can deny them access:
>>
>> cake acl deny Group.3 Users all
>>
>> or not set it up at all, yet once they log in, they have access to all
>> those views. Please help, thanks!
>>
>>
>
>
--
View this message in context:
http://www.nabble.com/ACL-denying-access-issues-tp23644791p23711841.html
Sent from the CakePHP mailing list archive at Nabble.com.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"CakePHP" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/cake-php?hl=en
-~----------~----~----~----~------~----~------~--~---
