• Inicio
• Nette
• Security
• Permission

PHP Class Nette\Security\Permission

This solution is mostly based on Zend_Acl (c) Zend Technologies USA Inc. (http://www.zend.com), new BSD license Mostrar archivo Open project: nette/security Class Usage Examples

Public Methods

Method	Description
addResource ( $resource, $parent = NULL ) : self	Adds a Resource having an identifier unique to the list.
addRole ( $role, $parents = NULL ) : self	Adds a Role to the list. The most recently added parent takes precedence over parents that were previously added.
allow ( $roles = self::ALL, $resources = self::ALL, $privileges = self::ALL, $assertion = NULL ) : self	Allows one or more Roles access to [certain $privileges upon] the specified Resource(s).
deny ( $roles = self::ALL, $resources = self::ALL, $privileges = self::ALL, $assertion = NULL ) : self	Denies one or more Roles access to [certain $privileges upon] the specified Resource(s).
getQueriedResource ( ) : mixed	Returns real currently queried Resource. Use by assertion.
getQueriedRole ( ) : mixed	Returns real currently queried Role. Use by assertion.
getResources ( ) : array	Returns all Resources.
getRoleParents ( $role ) : array	Returns existing Role's parents ordered by ascending priority.
getRoles ( ) : array	Returns all Roles.
hasResource ( $resource ) : boolean	Returns TRUE if the Resource exists in the list.
hasRole ( $role ) : boolean	Returns TRUE if the Role exists in the list.
isAllowed ( $role = self::ALL, $resource = self::ALL, $privilege = self::ALL ) : boolean	Returns TRUE if and only if the Role has access to [certain $privileges upon] the Resource.
removeAllResources ( ) : self	Removes all Resources.
removeAllRoles ( ) : self	Removes all Roles from the list.
removeAllow ( $roles = self::ALL, $resources = self::ALL, $privileges = self::ALL ) : self	Removes "allow" permissions from the list in the context of the given Roles, Resources, and privileges.
removeDeny ( $roles = self::ALL, $resources = self::ALL, $privileges = self::ALL ) : self	Removes "deny" restrictions from the list in the context of the given Roles, Resources, and privileges.
removeResource ( $resource ) : self	Removes a Resource and all of its children.
removeRole ( $role ) : self	Removes the Role from the list.
resourceInheritsFrom ( $resource, $inherit, $onlyParent = FALSE ) : boolean	Returns TRUE if $resource inherits from $inherit. If $onlyParents is TRUE, then $resource must inherit directly from $inherit.
roleInheritsFrom ( $role, $inherit, $onlyParents = FALSE ) : boolean	Returns TRUE if $role inherits from $inherit. If $onlyParents is TRUE, then $role must inherit directly from $inherit.

Protected Methods

Method	Description
setRule ( $toAdd, $type, $roles, $resources, $privileges, $assertion = NULL ) : self	Performs operations on Access Control List rules.

Private Methods

Method	Description
checkResource ( $resource, $need = TRUE ) : void	Checks whether Resource is valid and exists in the list.
checkRole ( $role, $need = TRUE ) : void	Checks whether Role is valid and exists in the list.
getRuleType ( $resource, $role, $privilege ) : mixed	Returns the rule type associated with the specified Resource, Role, and privilege.
getRules ( $resource, $role, $create = FALSE ) : array | null	Returns the rules associated with a Resource and a Role, or NULL if no such rules exist.
searchRolePrivileges ( $all, $role, $resource, $privilege ) : mixed	Performs a depth-first search of the Role DAG, starting at $role, in order to find a rule allowing/denying $role access to a/all $privilege upon $resource.

Method Details