dongren1353 2016-03-04 19:23
浏览 132
已采纳

如何只访问一个特定的页面YII2(高级模板)?

I have a special case for the user in my project. if user's subscription is expired (I check this in login action), he will be redirected to his profile to edit some choices. How can I prevent him from access any page except his profile. This is my code in login action

 if($subPaymentType == 'free'){
                    $subHours = $data[0]['sub_hours'];

                    $minutes = $subHours * 60 * 60;
                    $start_time = date('d-m-Y H:i:s', $startDate);
                    $endDate = $minutes + strtotime($start_time);
                    $endDate = date('d-m-Y H:i:s', $endDate);

                    if(strtotime(date('d-m-Y:')) < strtotime($endDate)){
                        $model->login();
                    }else{
                        $model->login();
                        //User can access this only page only
                        return $this->redirect(['user/view/?id='.Yii::$app->user->id]);

                    }

                }
  • 写回答

1条回答 默认 最新

  • dreljie602951 2016-03-04 19:58
    关注

    You can use use AccessControl in your controller 

    yii\filters\AccessControl;



class YourSiteController extends Controller
{
    public function behaviors()
    {
        return [
            'access' => [
                'class' => AccessControl::className(),
                'rules' => [
                    [
                        'actions' => ['login','profile'],
                        'allow' => true,
                        'roles' => ['*'],
                    ],
                    // allow authenticated users
                    [
                        'allow' => true,
                        'roles' => ['@'],
                    ],   
                ],
            ],         
            'verbs' => [
                'class' => VerbFilter::className(),
                'actions' => [
                    'delete' => ['post'],
                ],
            ],
        ];
    }

    see this guide for more http://www.yiiframework.com/doc-2.0/yii-filters-accesscontrol.html

    and in the related actionView 

    public function actionView($id)
{
   if ($id != Yii::$app->user->id){
     // not allowed  ... perform the action you need in this case 
   } else {
      return $this->render('view', [
          'model' => $this->findModel($id),
      ]);
   }
}
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?