I've tried to add menu <code>map</code> in backend-side. I use <code>yii2-advanced</code>. This is my “controller” code: <pre class="prettyprint"><code>public function actionMap() { return $this->render('map'); } </code></pre> But, when I try to access it with this url <code>http://localhost/yii2advanced/backend/web/index.php?r=site/map</code>, I've got error message <code>Forbidden (#403) - You are not allowed to perform this action</code>. I don't understand why I got this error message, can anybody help me to fix this problem?

It's caused by AccessControl. Most likely the action <code>map</code> is blocked according to access rules. Example of allowing it for all authenticated users: <pre class="prettyprint"><code>/** * @inheritdoc */ public function behaviors() { return [ 'access' => [ 'class' => \yii\filters\AccessControl::className(), 'only' => ['create', 'update'], 'rules' => [ // allow authenticated users [ 'allow' => true, 'roles' => ['@'], ], // everything else is denied ], ], ]; } </code></pre> Alternatively you can adjust access according to some RBAC roles.

In addition to the arogachev's answer: Paste it in your site controller: <pre class="prettyprint"><code> public function behaviors() { return [ 'access' => [ 'class' => AccessControl::className(), 'rules' => [ [ 'actions' => ['login', 'error'], 'allow' => true, ], [ 'actions' => ['logout', 'index'], 'allow' => true, 'roles' => ['@'], ], [ 'allow' => true, 'roles' => ['@'], ], ], ], 'verbs' => [ 'class' => VerbFilter::className(), 'actions' => [ 'logout' => ['post'], ], ], ]; } </code></pre>

Forbidden (#403) - You are not allowed to perform this action [Yii2]

I've tried to add menu map in backend-side. I use yii2-advanced. This is my “controller” code:

public function actionMap()
{
    return $this->render('map');
}

But, when I try to access it with this url http://localhost/yii2advanced/backend/web/index.php?r=site/map, I've got error message Forbidden (#403) - You are not allowed to perform this action. I don't understand why I got this error message, can anybody help me to fix this problem?

What is word meaning of forbidden?

Definition of forbidden 1 : not permitted or allowed.

It's caused by AccessControl. Most likely the action map is blocked according to access rules. Example of allowing it for all authenticated users:

/**
 * @inheritdoc
 */ 
public function behaviors()
{
    return [
        'access' => [
            'class' => \yii\filters\AccessControl::className(),
            'only' => ['create', 'update'],
            'rules' => [                
                // allow authenticated users
                [
                    'allow' => true,
                    'roles' => ['@'],
                ],
                // everything else is denied
            ],
        ],
    ];
}

Alternatively you can adjust access according to some RBAC roles.

In addition to the arogachev's answer: Paste it in your site controller:

   public function behaviors() {
    return [
        'access' => [
            'class' => AccessControl::className(),
            'rules' => [
                [
                    'actions' => ['login', 'error'],
                    'allow' => true,
                ],
                [
                    'actions' => ['logout', 'index'],
                    'allow' => true,
                    'roles' => ['@'],
                ],
                [
                    'allow' => true,
                    'roles' => ['@'],
                ],
            ],
        ],
        'verbs' => [
            'class' => VerbFilter::className(),
            'actions' => [
                'logout' => ['post'],
            ],
        ],
    ];
}

Forbidden (#403) - You are not allowed to perform this action [Yii2]

Tags:

yii2

Arta09

People also ask

2 Answers

arogachev

Faez Ahmed

Recent Activity

Donate For Us

Forbidden (#403) - You are not allowed to perform this action [Yii2]

Tags:

yii2

Arta09

People also ask

2 Answers

arogachev

Faez Ahmed

Related questions

Recent Activity

Donate For Us