duanlan7903 2014-05-30 19:16
浏览 72
已采纳

错误的重定向CakePHP

Redirect AuthComponent::$unauthorizedRedirect

when a user accesses an action where it is not permitted to access the _unauthorized method redirects incorrectly

correct: localhost / project / index

where he's redirecting: localhost / project / project / index

I am using acl

AppController.php

<?php
App::uses('Controller', 'Controller');
class AppController extends Controller {

public $components = array('Acl','Session','DebugKit.Toolbar','RequestHandler','Auth');
public $helpers = array('Html','Form','Session');
public $uses = array('Role');
public $roleId;
public $UAP;
public $aroId;

public function beforeFilter()
{
    if ($this->Session->check('Config.language')) {
        Configure::write('Config.language', $this->Session->read('Config.language'));
    }
    $this->Auth->authorize = array(
        AuthComponent::ALL => array('actionPath' => 'controllers/','userModel' => 'Role'),
        'Actions',
        );
    $this->Auth->authenticate = array(
        'Blowfish' => array(
            'userModel' => 'User'
            )
        );
    if(!$this->_isAdmin()){
        $this->roleId = $this->getRoleId();
        $this->UAP = $this->Role->find('first',array('conditions'=>array('Role.id'=>$this->roleId)));
        $aro = $this->Acl->Aro->find('first',array(
            'conditions'=>array(
                'Aro.model'=>'Role',
                'Aro.foreign_key'=>$this->roleId)));
        $this->aroId = $aro['Aro']['id'];
        $allow = array_merge($this->_getAllowed(), array('display'));
        $this->Auth->allowedActions = $allow;
    }
    //Configure AuthComponent
    $this->Auth->loginAction = array(
        'controller' => 'users',
        'action' => 'login'
        );
    $this->Auth->logoutRedirect = array(
        'controller' => 'users',
        'action' => 'login'
        );
    $this->Auth->loginRedirect = array(
        'controller' => 'pages',
        'action' => 'display',
        'home'
        );
    $this->Auth->authError = __('Not Authorized');
    return parent::beforeFilter();
}

protected function _getAllowed($actionsIds = null, $controllerActions = null){
    if(is_null($actionsIds)){
        $actionsIds = $this->_getAllowedActionsIds();
    }
    if(is_null($controllerActions)){
        $controllerActions = $this->_getControllerActions();
    }
    $allow = array();
    foreach ($actionsIds as $value) {
        array_push($allow, $controllerActions[$value]);
    }
    return $allow;
}

protected function _getAllowedActionsIds($allowedActions = null){
    if(is_null($allowedActions)){
        $allowedActions = $this->_getAllowedActions();
    }
    return array_values($allowedActions);
}

protected function _getAllowedActions($aroId = null, $acoId = null){
    if(is_null($aroId)){
        $aroId = $this->aroId;
    }
    if(is_null($acoId)){
        $acoId = $this->_getControllerActionsIds();
    }
    $result = $this->Acl->Aco->Permission->find('list',array(
        'conditions'=>array(
            'Permission.aro_id'=>$aroId,
            'Permission.aco_id'=>$acoId,
            'Permission._create'=>1,
            'Permission._read'=>1,
            'Permission._update'=>1,
            'Permission._delete'=>1,
            ),
        'fields'=>array('id','aco_id'),
        'recursive'=>'-1'));
    return $result;
}

protected function _getControllerActionsIds($controllerActions = null){
    if(is_null($controllerActions)){
        $controllerActions = $this->_getControllerActions();
    }
    return array_keys($controllerActions);
}

protected function _getControllerActions($node = null){
    if(is_null($node)){
        $node = $this->_getNodeController();
    }
    return $this->Acl->Aco->find(
        'list',array(
            'conditions'=>array('Aco.parent_id'=>$node['0']['Aco']['id']),
            'fields'=>array('Aco.id','Aco.alias'),
            'recursive'=>'-1',
            ));
}

protected function _getNodeController(){
    return $this->Acl->Aco->node("controllers/{$this->name}");  
}

protected function _isAdmin(){
    if($this->Auth->user() && $this->Auth->user('role_id') == 1){
        $this->Auth->allow();
        return true;
    }
    return false;
}

public function getRoleId(){
    if(!is_null($this->Auth->user('role_id'))){
        return $this->Auth->user('role_id');
    }
    return 9; //Usuário não cadastrado
}
}
?>
  • 写回答

4条回答 默认 最新

  • dongshuxi3105 2014-12-04 11:36
    关注

    Ok, I found the answer for this. dude you can just add unauthorize redirect in AppController like this:

    public $components = array(
        'Acl',
        'Auth' => array(
            'authorize' => array(
                'Actions' => array('actionPath' => 'controllers')
            ),
            'authError' => 'Did you really think you are allowed to see that?',
            'unauthorizedRedirect' => array(
                'controller' => 'users',
                'action' => 'index',
                'prefix' => false)
        ),
        'Session'
    );

    Here you can specify any unauthorized redirection or custom unauthorized page

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(3条)

报告相同问题?

  • 错误重定向CakePHP php
    2014-05-30 19:16
    回答 4 已采纳 Ok, I found the answer for this. dude you can just add unauthorize redirect in AppController like
  • Cakephp重定向错误 php
    2013-11-08 16:11
    回答 1 已采纳 Configure::write('Exception', array( 'handler' => 'ErrorHandler::handleException', 'renderer' =
  • CakePHP烘焙PHP版本错误 php
    2017-09-28 21:32
    回答 1 已采纳 That is your webserver problem. There is nothing to do with cake bake. Find a way to configure w
  • CakePHP 4.2.4
    2021-05-01 03:39
    CakePHP 4.2.4 更新日志:2021-02-28修复bin/cake路由检查是否无法正确处理重定向路由;从与pdo_sqlsrv 5.9+不兼容的SQLServer驱动程序中删除了一个连接标志;改进的API文档;控制台TableHelper现在接受整数并将...
  • CakePHP主页URL重定向 php
    2017-06-01 19:54
    回答 1 已采纳 Check in routes.php file if you have this line of code (if not add it). Router::connect('/', arr
  • Cakephp返回错误302 php
    2017-04-17 21:39
    回答 2 已采纳 Yes, maybe could be correlated with the way on which PHP works with sessions. PHP saves all sessio
  • CakePHP:在routes.php重定向url php
    2015-10-28 16:50
    回答 1 已采纳 Router::connect('/old_url/*', array('controller' => 'my_controller', 'action' => 'old_url'))
  • php cakephp like,cakephp常见知识点汇总
    2021-04-29 07:34
    妞妞脾气灰常大的博客 本文实例总结了cakephp常见知识点。分享给大家供大家参考,具体如下:1. 调用其他控制器的模板,重定向方法一:在此调用/views/tasks/tasks下的hello.ctp模板$this -> viewPath = 'tasks';$this -> render('...
  • 重定向cakephp应用程序以外的其他文件夹 php
    2016-02-05 12:35
    回答 1 已采纳 You want to put your Webservices folder inside your app's webroot so that it can be accessed (this
  • cakephp中进行多次重定向 php
    2015-02-26 06:00
    回答 1 已采纳 Try This : Controller: public function add() { if ($this->request->is('post')) {
  • CakePHP:将所有404错误重定向到主页? php
    2010-11-05 17:24
    回答 4 已采纳 To catch and handle 404 errors, you need to extend the ErrorHandler class and override the error40
  • CakePHP-Batch:批量搜索过滤器和更新删除分页结果
    2021-05-17 13:44
    CakePHP Batch(和过滤器)插件 对已过滤的记录进行分页,并允许批量删除和更新记录 背景 批插件的扩展,这是一个叉的东西,这是又一个叉 ,这本身就是从叉。 随后添加了RANGE支持,并修复了一些错误。 指出了一个...
  • cakephp重定向到routes.php中的外部URL php
    2014-12-11 09:16
    回答 2 已采纳 This cannot be done with CakePHP. Well actually it could, but you'd better put this in your .htacc
  • CakePHP Session解决方案
    2021-07-09 16:31
    wyqgg123的博客 首先cakephp的配置session的文件是在config目录下的core.php中,这里我使用的是默认的php,之前因为修改这个为cake一直有错误。 Configure::write('Session', array( //这里默认的是 php 还有两个选项 cake、...
  • CAKEPHP3.7安装
    2019-02-21 15:41
    u010338486的博客 安装 cakephp是简单,易于安装的。最低要求仅需要一个web服务器和一份CAKEPHP的副本代码
  • PHP常用框架及漏洞
    2021-08-14 16:26
    xzhome的博客 PHP常用框架及漏洞 PHP框架 laraval介绍: Laravel基于MVC架构,可以满足诸如事件处理、用户身份验证等各种需求,同时通过包管理实现模块化和可扩展的代码,并且对数据库管理有着健壮的支持。...CakePHP 介绍: ...
  • CakePHP快速开发应用程序
    2020-08-10 17:44
    culh2177的博客 CakePHP is a framework that provides a solid base for PHP development. It allows users at any skill level to rapidly develop robust web applications. The framework follows the principles of the MVC ...
  • PHP – 最佳实践
    2022-09-16 11:08
    allway2的博客 PHP 中开发 Web 应用程序时,您应该遵循一些好的做法。其中大多数都非常容易上手,其中一些甚至适用于一般的 Web 开发。这不是特定于 PHP 的。为避免用户刷新浏览器并两次提交相同的表单数据的情况,您应该始终...
  • CakePHP系列(二)----Bookmarker案例(二)
    2017-02-23 17:15
    码农致富的博客 CakePHP中,认证由组件处理。 组件可以被认为是创建与特定特征或概念相关的控制器代码的可重用块的方法。 组件也可以挂钩到控制器的事件生命周期中,并以这种方式与您的应用程序交互。 为了开始,我们将Auth...
  • CakePHP系列(二)----博客(Blog)案例(二)
    2017-02-24 22:27
    码农致富的博客 创建文章模型 模型是CakePHP应用程序的面包和黄油。 通过创建一个将与我们的数据库交互的CakePHP模型,我们将有需要的基础来执行我们的查看,添加,编辑...文件我们会创建将保存到src/Model/Table/ArticlesTable.php
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥15 装 pytorch 的时候出了好多问题,遇到这种情况怎么处理?
  • ¥20 IOS游览器某宝手机网页版自动立即购买JavaScript脚本
  • ¥15 手机接入宽带网线,如何释放宽带全部速度
  • ¥30 关于#r语言#的问题:如何对R语言中mfgarch包中构建的garch-midas模型进行样本内长期波动率预测和样本外长期波动率预测
  • ¥15 ETLCloud 处理json多层级问题
  • ¥15 matlab中使用gurobi时报错
  • ¥15 这个主板怎么能扩出一两个sata口
  • ¥15 不是,这到底错哪儿了😭
  • ¥15 2020长安杯与连接网探
  • ¥15 关于#matlab#的问题:在模糊控制器中选出线路信息,在simulink中根据线路信息生成速度时间目标曲线(初速度为20m/s,15秒后减为0的速度时间图像)我想问线路信息是什么