douyun3631 2012-02-22 10:07
浏览 33
已采纳

如何将Dashboard页面中的链接隐藏到ROLE ADMIN并将其显示给ROLE_SUPER_ADMIN?

I have install SonataAdminBundle and configure it manage my Entities, however I have 2 Admin Roles : ROLE_ADMIN and ROLE_SUPER_ADMIN and I want to limit access to some Admin services for ROLE_ADMIN, I'm using this in security.yml file : 

access_control: 
        - { path: ^/admin/login$, role: IS_AUTHENTICATED_ANONYMOUSLY } 
        - { path: ^/admin/ads, roles: ROLE_SUPER_ADMIN } 
        - { path: ^/admin, roles: ROLE_ADMIN } 
        - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }

it's work perfectly, when a user with ROLE_ADMIN click on manage Ads link, he will be in Access denied page, but I want to hidden this link in menu in top Nav and in Dashboard page, how I do this ? Thanks

  • 写回答

2条回答 默认 最新

  • doujing5150 2012-02-23 23:30
    关注

    The default security handler of the SonataAdminBundle is the NOOP implementation, which is always returns true. You have to change the security configuration of the admin bundle.

    With the role based security handler you have to add roles to the security.yml config as described here. For every admin class there is number of role you have to add to your base role in the role hierarchy. If you have an admin class with the id my_bundle.admin.object andmy_bundle.admin.protected_object:

    security:
  role_hierarchy:
    ROLE_SUPER_ADMIN: 
      - ROLE_USER
      - ROLE_ADMIN
      - ROLE_ALLOWED_TO_SWITCH
      - ROLE_MY_BUNDLE_ADMIN_PROTECTED_OBJECT_LIST
      - ROLE_MY_BUNDLE_ADMIN_PROTECTED_OBJECT_EDIT
      ....
    ROLE_ADMIN:
      - ROLE_USER
      - ROLE_SONATA_USER_ADMIN_USER_EDIT
      - ROLE_SONATA_USER_ADMIN_USER_LIST
      - ROLE_MY_BUNDLE_ADMIN_OBJECT_LIST
      - ROLE_MY_BUNDLE_ADMIN_OBJECT_EDIT
      ...

    You might have to enumerate all admin/action combination as roles. Maybe implementing a custom security handler based on the RoleSecurityHandler is a better choice if you have large number of admin classes.

    Note I don't know too much about ACLs in symfony, neither the AclSecurityHandler.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 执行 virtuoso 命令后,界面没有,cadence 启动不起来
  • ¥50 comfyui下连接animatediff节点生成视频质量非常差的原因
  • ¥20 有关区间dp的问题求解
  • ¥15 多电路系统共用电源的串扰问题
  • ¥15 slam rangenet++配置
  • ¥15 有没有研究水声通信方面的帮我改俩matlab代码
  • ¥15 ubuntu子系统密码忘记
  • ¥15 保护模式-系统加载-段寄存器
  • ¥15 电脑桌面设定一个区域禁止鼠标操作
  • ¥15 求NPF226060磁芯的详细资料