We used Yii2 framework last alpha. Role for user already created but problem is how it assign to user. Documentation is absent.

For database version of RBAC use DbManager (quote frm: Alexufo): <pre class="prettyprint"><code>use yii\rbac\DbManager; $r=new DbManager; $r->init(); $r->createRole("admin","Administrator"); $r->save(); $r->assign('1','admin'); //1 is user id </code></pre> Example Access rules: <pre class="prettyprint"><code><?php namespace backend\controllers; use yii; use yii\web\AccessControl; use yii\web\Controller; class SiteController extends Controller { public function behaviors() { return [ 'access' => [ 'class' => AccessControl::className(), 'rules' => [ [ //'actions' => ['login', 'error'], // Define specific actions 'allow' => true, // Has access 'roles' => ['@'], // '@' All logged in users / or your access role e.g. 'admin', 'user' ], [ 'allow' => false, // Do not have access 'roles'=>['?'], // Guests '?' ], ], ], ]; } public function actionIndex() { return $this->render( 'index' ); } } ?> </code></pre> Don't forget to add this to your configuration file (config/main.php): <pre class="prettyprint"><code>'components' => [ 'authManager'=>array( 'class' => 'yii\rbac\DbManager', 'defaultRoles' => ['end-user'], ), ... ] </code></pre> Tables: <pre class="prettyprint"><code>drop table if exists `tbl_auth_assignment`; drop table if exists `tbl_auth_item_child`; drop table if exists `tbl_auth_item`; create table `tbl_auth_item` ( `name` varchar(64) not null, `type` integer not null, `description` text, `biz_rule` text, `data` text, primary key (`name`), key `type` (`type`) ) engine InnoDB; create table `tbl_auth_item_child` ( `parent` varchar(64) not null, `child` varchar(64) not null, primary key (`parent`,`child`), foreign key (`parent`) references `tbl_auth_item` (`name`) on delete cascade on update cascade, foreign key (`child`) references `tbl_auth_item` (`name`) on delete cascade on update cascade ) engine InnoDB; create table `tbl_auth_assignment` ( `item_name` varchar(64) not null, `user_id` varchar(64) not null, `biz_rule` text, `data` text, primary key (`item_name`,`user_id`), foreign key (`item_name`) references `tbl_auth_item` (`name`) on delete cascade on update cascade ) engine InnoDB; </code></pre> You can also find this information in the "yii/rbac" directory (including other SQL files). For functionality and more details: https://github.com/yiisoft/yii2/blob/master/docs/guide/security-authorization.md

How to add role to user?

1 Answers

For database version of RBAC use DbManager (quote frm: Alexufo):

use yii\rbac\DbManager;
$r=new DbManager;
$r->init();
$r->createRole("admin","Administrator");
$r->save();

$r->assign('1','admin');   //1 is user id

Example Access rules:

<?php
namespace backend\controllers;

use yii;
use yii\web\AccessControl;
use yii\web\Controller;

class SiteController extends Controller
{
    public function behaviors()
    {
        return [
            'access' => [
                'class' => AccessControl::className(),
                'rules' => [
                    [
                        //'actions' => ['login', 'error'], // Define specific actions
                        'allow' => true, // Has access
                        'roles' => ['@'], // '@' All logged in users / or your access role e.g. 'admin', 'user'
                    ],
                    [
                        'allow' => false, // Do not have access
                        'roles'=>['?'], // Guests '?'
                    ],
                ],
            ],
        ];
    }

    public function actionIndex()
    {
        return $this->render( 'index' );
    }
}
?>

Don't forget to add this to your configuration file (config/main.php):

'components' => [
    'authManager'=>array(
        'class' => 'yii\rbac\DbManager',
        'defaultRoles' => ['end-user'],
    ),
    ...
]

Tables:

drop table if exists `tbl_auth_assignment`;
drop table if exists `tbl_auth_item_child`;
drop table if exists `tbl_auth_item`;

create table `tbl_auth_item`
(
   `name`                 varchar(64) not null,
   `type`                 integer not null,
   `description`          text,
   `biz_rule`              text,
   `data`                 text,
   primary key (`name`),
   key `type` (`type`)
) engine InnoDB;

create table `tbl_auth_item_child`
(
   `parent`               varchar(64) not null,
   `child`                varchar(64) not null,
   primary key (`parent`,`child`),
   foreign key (`parent`) references `tbl_auth_item` (`name`) on delete cascade on update cascade,
   foreign key (`child`) references `tbl_auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

create table `tbl_auth_assignment`
(
   `item_name`            varchar(64) not null,
   `user_id`              varchar(64) not null,
   `biz_rule`              text,
   `data`                 text,
   primary key (`item_name`,`user_id`),
   foreign key (`item_name`) references `tbl_auth_item` (`name`) on delete cascade on update cascade
) engine InnoDB;

You can also find this information in the "yii/rbac" directory (including other SQL files). For functionality and more details:

https://github.com/yiisoft/yii2/blob/master/docs/guide/security-authorization.md

answered Sep 29 '22 11:09

Martijn H.

Related questions
                            
                                Symfony2 - How to use __construct() in a Controller and access Securty.Context?
                            
                                Undefined variable error in PHP include file [duplicate]
                            
                                Laravel controller construct
                            
                                Laravel Eloquent: Best Way to Calculate Total Price
                            
                                Yii framework: Controller/Action url & parameters
                            
                                How to disable ctrl-z, ctrl-c from breaking out of a php script
                            
                                Why can php://input be read more than once despite the documentation saying otherwise?
                            
                                Object could not be converted to string?
                            
                                PHP include vs include_once (speed) [duplicate]
                            
                                Override an existing defined constant [duplicate]
                            
                                How to change sql_mode at runtime
                            
                                Running command-line application from PHP as specific user
                            
                                PHP mail does not get sent, how do I debug?
                            
                                How can I pass an array of PDO parameters yet still specify their types?
                            
                                PHP CodeSniffer include_once error
                            
                                Get Element at N position in an Array without Loop
                            
                                Best way to delete "column" from multidimensional array
                            
                                XDebug could not connect to client
                            
                                Using PHP & Curl to login to my websites form
                            
                                How do I set a default configuration for GridView in Yii2 without the widget factory?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

How to add role to user?

Tags:

php

Alexufo

People also ask

1 Answers

Martijn H.

Recent Activity

Donate For Us