PHP 클래스 Cake\Controller\Component\AuthComponent

Binds access control with user authentication and session management.

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html

상속: extends Cake\Controller\Component, use trait Cake\Event\EventDispatcherTrait

공개 프로퍼티들

프로퍼티	타입	설명
$allowedActions	array	Controller actions for which user validation is not required.
$components	array	Other components utilized by AuthComponent
$request	Cake\Network\Request	Request object
$response	Cake\Network\Response	Response object
$session	Cake\Network\Session	Instance of the Session object

보호된 프로퍼티들

프로퍼티	타입	설명
$_authenticateObjects	Cake\Auth\BaseAuthenticate[]	Objects that will be used for authentication checks.
$_authenticationProvider	Cake\Auth\BaseAuthenticate	The instance of the Authenticate provider that was used for successfully logging in the current user after calling login() in the same request
$_authorizationProvider	Cake\Auth\BaseAuthorize	The instance of the Authorize provider that was used to grant access to the current user to the URL they are requesting.
$_authorizeObjects	Cake\Auth\BaseAuthorize[]	Objects that will be used for authorization checks.
$_defaultConfig	array	- authenticate - An array of authentication objects to use for authenticating users. You can configure multiple adapters and they will be checked sequentially when users are identified. $this->Auth->config('authenticate', [ 'Form' => [ 'userModel' => 'Users.Users' ] ]); Using the class name without 'Authenticate' as the key, you can pass in an array of config for each authentication object. Additionally you can define config that should be set to all authentications objects using the 'all' key: $this->Auth->config('authenticate', [ AuthComponent::ALL => [ 'userModel' => 'Users.Users', 'scope' => ['Users.active' => 1] ], 'Form', 'Basic' ]); - authorize - An array of authorization objects to use for authorizing users. You can configure multiple adapters and they will be checked sequentially when authorization checks are done. $this->Auth->config('authorize', [ 'Crud' => [ 'actionPath' => 'controllers/' ] ]); Using the class name without 'Authorize' as the key, you can pass in an array of config for each authorization object. Additionally you can define config that should be set to all authorization objects using the AuthComponent::ALL key: $this->Auth->config('authorize', [ AuthComponent::ALL => [ 'actionPath' => 'controllers/' ], 'Crud', 'CustomAuth' ]); - ~~ajaxLogin~~ - The name of an optional view element to render when an Ajax request is made with an invalid or expired session. This option is deprecated since 3.3.6. Your client side code should instead check for 403 status code and show appropriate login form. - flash - Settings to use when Auth needs to do a flash message with FlashComponent::set(). Available keys are: - key - The message domain to use for flashes generated by this component, defaults to 'auth'. - element - Flash element to use, defaults to 'default'. - params - The array of additional params to use, defaults to ['class' => 'error'] - loginAction - A URL (defined as a string or array) to the controller action that handles logins. Defaults to /users/login. - loginRedirect - Normally, if a user is redirected to the loginAction page, the location they were redirected from will be stored in the session so that they can be redirected back after a successful login. If this session value is not set, redirectUrl() method will return the URL specified in loginRedirect. - logoutRedirect - The default action to redirect to after the user is logged out. While AuthComponent does not handle post-logout redirection, a redirect URL will be returned from AuthComponent::logout(). Defaults to loginAction. - authError - Error to display when user attempts to access an object or action to which they do not have access. - unauthorizedRedirect - Controls handling of unauthorized access. - For default value true unauthorized user is redirected to the referrer URL or $loginRedirect or '/'. - If set to a string or array the value is used as a URL to redirect to. - If set to false a ForbiddenException exception is thrown instead of redirecting. - storage - Storage class to use for persisting user record. When using stateless authenticator you should set this to 'Memory'. Defaults to 'Session'. - checkAuthIn - Name of event for which initial auth checks should be done. Defaults to 'Controller.startup'. You can set it to 'Controller.initialize' if you want the check to be done before controller's beforeFilter() is run.
$_storage	Cake\Auth\Storage\StorageInterface	Storage object.

공개 메소드들

메소드	설명
__get ( string $name ) : mixed	Magic accessor for backward compatibility for property $sessionKey.
__set ( string $name, mixed $value ) : void	Magic setter for backward compatibility for property $sessionKey.
allow ( string \| array \| null $actions = null ) : void	Takes a list of actions in the current controller for which authentication is not required, or no parameters to allow all actions.
authCheck ( Cake\Event\Event $event ) : Response \| null	Main execution method, handles initial authentication check and redirection of invalid users.
authenticationProvider ( ) : Cake\Auth\BaseAuthenticate \| null	If login was called during this request and the user was successfully authenticated, this function will return the instance of the authentication object that was used for logging the user in.
authorizationProvider ( ) : Cake\Auth\BaseAuthorize \| null	If there was any authorization processing for the current request, this function will return the instance of the Authorization object that granted access to the user to the current address.
constructAuthenticate ( ) : array \| null	Loads the configured authentication objects.
constructAuthorize ( ) : array \| null	Loads the authorization objects configured.
deny ( string \| array \| null $actions = null ) : void	Removes items from the list of allowed/no authentication required actions.
flash ( string $message ) : void	Set a flash message. Uses the Flash component with values from flash config.
getAuthenticate ( string $alias ) : Cake\Auth\BaseAuthenticate \| null	Getter for authenticate objects. Will return a particular authenticate object.
getAuthorize ( string $alias ) : Cake\Auth\BaseAuthorize \| null	Getter for authorize objects. Will return a particular authorize object.
identify ( ) : array \| boolean	Use the configured authentication adapters, and attempt to identify the user by credentials contained in $request.
implementedEvents ( ) : array	Events supported by this component.
initialize ( array $config ) : void	Initialize properties.
isAuthorized ( array \| ArrayAccess \| null $user = null, Cake\Network\Request $request = null ) : boolean	Check if the provided user is authorized for the request.
logout ( ) : string	Log a user out.
redirectUrl ( string \| array \| null $url = null ) : string	Get the URL a user should be redirected to upon login.
setUser ( array \| ArrayAccess $user ) : void	Set provided user info to storage as logged in user.
startup ( Cake\Event\Event $event ) : Response \| null	Callback for Controller.startup event.
storage ( Cake\Auth\Storage\StorageInterface $storage = null ) : Cake\Auth\Storage\StorageInterface \| null	Get/set user record storage object.
user ( string \| null $key = null ) : mixed \| null	Get the current user from storage.

보호된 메소드들

메소드	설명
_getUser ( ) : boolean	Similar to AuthComponent::user() except if user is not found in configured storage, connected authentication objects will have their getUser() methods called.
_isAllowed ( Controller $controller ) : boolean	Checks whether current action is accessible without authentication.
_isLoginAction ( Controller $controller ) : boolean	Normalizes config loginAction and checks if current request URL is same as login action.
_setDefaults ( ) : void	Sets defaults for configs.
_unauthenticated ( Controller $controller ) : Response \| null	Handles unauthenticated access attempt. First the unauthenticated() method of the last authenticator in the chain will be called. The authenticator can handle sending response or redirection as appropriate and return true to indicate no further action is necessary. If authenticator returns null this method redirects user to login action. If it's an AJAX request and config ajaxLogin is specified that element is rendered else a 403 HTTP status code is returned.
_unauthorized ( Controller $controller ) : Response	Handle unauthorized access attempt

메소드 상세

__get() 공개 메소드

Magic accessor for backward compatibility for property $sessionKey.

public __get ( string $name ) : mixed
$name	string	Property name
리턴	mixed

__set() 공개 메소드

Magic setter for backward compatibility for property $sessionKey.

public __set ( string $name, mixed $value ) : void
$name	string	Property name.
$value	mixed	Value to set.
리턴	void

_getUser() 보호된 메소드

This lets stateless authentication methods function correctly.

protected _getUser ( ) : boolean
리턴	boolean	true If a user can be found, false if one cannot.

_isAllowed() 보호된 메소드

Checks whether current action is accessible without authentication.

protected _isAllowed ( Controller $controller ) : boolean
$controller	Cake\Controller\Controller	A reference to the instantiating controller object
리턴	boolean	True if action is accessible without authentication else false

_isLoginAction() 보호된 메소드

Normalizes config loginAction and checks if current request URL is same as login action.

protected _isLoginAction ( Controller $controller ) : boolean
$controller	Cake\Controller\Controller	A reference to the controller object.
리턴	boolean	True if current action is login action else false.

_setDefaults() 보호된 메소드

Sets defaults for configs.

protected _setDefaults ( ) : void
리턴	void

_unauthenticated() 보호된 메소드

Handles unauthenticated access attempt. First the unauthenticated() method of the last authenticator in the chain will be called. The authenticator can handle sending response or redirection as appropriate and return true to indicate no further action is necessary. If authenticator returns null this method redirects user to login action. If it's an AJAX request and config ajaxLogin is specified that element is rendered else a 403 HTTP status code is returned.

protected _unauthenticated ( Controller $controller ) : Response \| null
$controller	Cake\Controller\Controller	A reference to the controller object.
리턴	Cake\Network\Response \| null	Null if current action is login action else response object returned by authenticate object or Controller::redirect().

_unauthorized() 보호된 메소드

Handle unauthorized access attempt

protected _unauthorized ( Controller $controller ) : Response
$controller	Cake\Controller\Controller	A reference to the controller object
리턴	Cake\Network\Response

allow() 공개 메소드

You can use allow with either an array or a simple string. $this->Auth->allow('view'); $this->Auth->allow(['edit', 'add']); or to allow all actions $this->Auth->allow();

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html#making-actions-public

public allow ( string \| array \| null $actions = null ) : void
$actions	string \| array \| null	Controller action name or array of actions
리턴	void

authCheck() 공개 메소드

The auth check is done when event name is same as the one configured in checkAuthIn config.

public authCheck ( Cake\Event\Event $event ) : Response \| null
$event	Cake\Event\Event	Event instance.
리턴	Cake\Network\Response \| null

authenticationProvider() 공개 메소드

If login was called during this request and the user was successfully authenticated, this function will return the instance of the authentication object that was used for logging the user in.

public authenticationProvider ( ) : Cake\Auth\BaseAuthenticate \| null
리턴	Cake\Auth\BaseAuthenticate \| null

authorizationProvider() 공개 메소드

If there was any authorization processing for the current request, this function will return the instance of the Authorization object that granted access to the user to the current address.

public authorizationProvider ( ) : Cake\Auth\BaseAuthorize \| null
리턴	Cake\Auth\BaseAuthorize \| null

constructAuthenticate() 공개 메소드

Loads the configured authentication objects.

public constructAuthenticate ( ) : array \| null
리턴	array \| null	The loaded authorization objects, or null on empty authenticate value.

constructAuthorize() 공개 메소드

Loads the authorization objects configured.

public constructAuthorize ( ) : array \| null
리턴	array \| null	The loaded authorization objects, or null when authorize is empty.

deny() 공개 메소드

You can use deny with either an array or a simple string. $this->Auth->deny('view'); $this->Auth->deny(['edit', 'add']); or $this->Auth->deny(); to remove all items from the allowed list

또한 보기: Cake\Controller\Component\AuthComponent::allow()

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html#making-actions-require-authorization

public deny ( string \| array \| null $actions = null ) : void
$actions	string \| array \| null	Controller action name or array of actions
리턴	void

flash() 공개 메소드

Set a flash message. Uses the Flash component with values from flash config.

public flash ( string $message ) : void
$message	string	The message to set.
리턴	void

getAuthenticate() 공개 메소드

Getter for authenticate objects. Will return a particular authenticate object.

public getAuthenticate ( string $alias ) : Cake\Auth\BaseAuthenticate \| null
$alias	string	Alias for the authenticate object
리턴	Cake\Auth\BaseAuthenticate \| null

getAuthorize() 공개 메소드

Getter for authorize objects. Will return a particular authorize object.

public getAuthorize ( string $alias ) : Cake\Auth\BaseAuthorize \| null
$alias	string	Alias for the authorize object
리턴	Cake\Auth\BaseAuthorize \| null

identify() 공개 메소드

Triggers Auth.afterIdentify event which the authenticate classes can listen to.

public identify ( ) : array \| boolean
리턴	array \| boolean	User record data, or false, if the user could not be identified.

implementedEvents() 공개 메소드

Events supported by this component.

public implementedEvents ( ) : array
리턴	array

initialize() 공개 메소드

Initialize properties.

public initialize ( array $config ) : void
$config	array	The config data.
리턴	void

isAuthorized() 공개 메소드

Uses the configured Authorization adapters to check whether or not a user is authorized. Each adapter will be checked in sequence, if any of them return true, then the user will be authorized for the request.

public isAuthorized ( array \| ArrayAccess \| null $user = null, Cake\Network\Request $request = null ) : boolean
$user	array \| ArrayAccess \| null	The user to check the authorization of. If empty the user fetched from storage will be used.
$request	Cake\Network\Request	The request to authenticate for. If empty, the current request will be used.
리턴	boolean	True if $user is authorized, otherwise false

logout() 공개 메소드

Returns the logout action to redirect to. Triggers the Auth.logout event which the authenticate classes can listen for and perform custom logout logic.

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html#logging-users-out

public logout ( ) : string
리턴	string	Normalized config `logoutRedirect`

redirectUrl() 공개 메소드

Pass a URL in to set the destination a user should be redirected to upon logging in. If no parameter is passed, gets the authentication redirect URL. The URL returned is as per following rules: - Returns the normalized redirect URL from storage if it is present and for the same domain the current app is running on. - If there is no URL returned from storage and there is a config loginRedirect, the loginRedirect value is returned. - If there is no session and no loginRedirect, / is returned.

public redirectUrl ( string \| array \| null $url = null ) : string
$url	string \| array \| null	Optional URL to write as the login redirect URL.
리턴	string	Redirect URL

setUser() 공개 메소드

The storage class is configured using storage config key or passing instance to AuthComponent::storage().

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html#identifying-users-and-logging-them-in

public setUser ( array \| ArrayAccess $user ) : void
$user	array \| ArrayAccess	User data.
리턴	void

startup() 공개 메소드

Callback for Controller.startup event.

public startup ( Cake\Event\Event $event ) : Response \| null
$event	Cake\Event\Event	Event instance.
리턴	Cake\Network\Response \| null

storage() 공개 메소드

Get/set user record storage object.

public storage ( Cake\Auth\Storage\StorageInterface $storage = null ) : Cake\Auth\Storage\StorageInterface \| null
$storage	Cake\Auth\Storage\StorageInterface	Sets provided object as storage or if null returns configured storage object.
리턴	Cake\Auth\Storage\StorageInterface \| null

user() 공개 메소드

Get the current user from storage.

링크 보기: http://book.cakephp.org/3.0/en/controllers/components/authentication.html#accessing-the-logged-in-user

public user ( string \| null $key = null ) : mixed \| null
$key	string \| null	Field to retrieve. Leave null to get entire User record.
리턴	mixed \| null	Either User record or null if no user is logged in, or retrieved field if key is specified.

프로퍼티 상세

$_authenticateObjects 보호되어 있는 프로퍼티

Objects that will be used for authentication checks.

protected BaseAuthenticate[],Cake\Auth $_authenticateObjects
리턴	Cake\Auth\BaseAuthenticate[]

$_authenticationProvider 보호되어 있는 프로퍼티

The instance of the Authenticate provider that was used for successfully logging in the current user after calling login() in the same request

protected BaseAuthenticate,Cake\Auth $_authenticationProvider
리턴	Cake\Auth\BaseAuthenticate

$_authorizationProvider 보호되어 있는 프로퍼티

The instance of the Authorize provider that was used to grant access to the current user to the URL they are requesting.

protected BaseAuthorize,Cake\Auth $_authorizationProvider
리턴	Cake\Auth\BaseAuthorize

$_authorizeObjects 보호되어 있는 프로퍼티

Objects that will be used for authorization checks.

protected BaseAuthorize[],Cake\Auth $_authorizeObjects
리턴	Cake\Auth\BaseAuthorize[]

$_defaultConfig 보호되어 있는 프로퍼티

- authenticate - An array of authentication objects to use for authenticating users. You can configure multiple adapters and they will be checked sequentially when users are identified. $this->Auth->config('authenticate', [ 'Form' => [ 'userModel' => 'Users.Users' ] ]); Using the class name without 'Authenticate' as the key, you can pass in an array of config for each authentication object. Additionally you can define config that should be set to all authentications objects using the 'all' key: $this->Auth->config('authenticate', [ AuthComponent::ALL => [ 'userModel' => 'Users.Users', 'scope' => ['Users.active' => 1] ], 'Form', 'Basic' ]); - authorize - An array of authorization objects to use for authorizing users. You can configure multiple adapters and they will be checked sequentially when authorization checks are done. $this->Auth->config('authorize', [ 'Crud' => [ 'actionPath' => 'controllers/' ] ]); Using the class name without 'Authorize' as the key, you can pass in an array of config for each authorization object. Additionally you can define config that should be set to all authorization objects using the AuthComponent::ALL key: $this->Auth->config('authorize', [ AuthComponent::ALL => [ 'actionPath' => 'controllers/' ], 'Crud', 'CustomAuth' ]); - ~~ajaxLogin~~ - The name of an optional view element to render when an Ajax request is made with an invalid or expired session. **This option is deprecated since 3.3.6.** Your client side code should instead check for 403 status code and show appropriate login form. - flash - Settings to use when Auth needs to do a flash message with FlashComponent::set(). Available keys are: - key - The message domain to use for flashes generated by this component, defaults to 'auth'. - element - Flash element to use, defaults to 'default'. - params - The array of additional params to use, defaults to ['class' => 'error'] - loginAction - A URL (defined as a string or array) to the controller action that handles logins. Defaults to /users/login. - loginRedirect - Normally, if a user is redirected to the loginAction page, the location they were redirected from will be stored in the session so that they can be redirected back after a successful login. If this session value is not set, redirectUrl() method will return the URL specified in loginRedirect. - logoutRedirect - The default action to redirect to after the user is logged out. While AuthComponent does not handle post-logout redirection, a redirect URL will be returned from AuthComponent::logout(). Defaults to loginAction. - authError - Error to display when user attempts to access an object or action to which they do not have access. - unauthorizedRedirect - Controls handling of unauthorized access. - For default value true unauthorized user is redirected to the referrer URL or $loginRedirect or '/'. - If set to a string or array the value is used as a URL to redirect to. - If set to false a ForbiddenException exception is thrown instead of redirecting. - storage - Storage class to use for persisting user record. When using stateless authenticator you should set this to 'Memory'. Defaults to 'Session'. - checkAuthIn - Name of event for which initial auth checks should be done. Defaults to 'Controller.startup'. You can set it to 'Controller.initialize' if you want the check to be done before controller's beforeFilter() is run.

protected array $_defaultConfig
리턴	array

$_storage 보호되어 있는 프로퍼티

Storage object.

protected StorageInterface,Cake\Auth\Storage $_storage
리턴	Cake\Auth\Storage\StorageInterface

$allowedActions 공개적으로 프로퍼티

Controller actions for which user validation is not required.

또한 보기: Cake\Controller\Component\AuthComponent::allow()

public array $allowedActions
리턴	array

$components 공개적으로 프로퍼티

Other components utilized by AuthComponent

public array $components
리턴	array

$request 공개적으로 프로퍼티

Request object

public Request,Cake\Network $request
리턴	Cake\Network\Request

$response 공개적으로 프로퍼티

Response object

public Response,Cake\Network $response
리턴	Cake\Network\Response

$session 공개적으로 프로퍼티

Instance of the Session object

사용 중단: 3.1.0 Will be removed in 4.0

public Session,Cake\Network $session
리턴	Cake\Network\Session