Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Is there a sensible way to determine whether the current user can access an action on a different controller, based on the accessRules for that controller and the accessControl filter?
For example, I don’t want to display a link that goes to a controller action that the user doesn’t have permission to access, based on their role and the rules defined in that controller’s accessRules().
I believe the answer is no different due to how Yii handles it’s controllers.
The only way would be to parse the controller yourself and add its own rules as part of your controller dynamically in your code and then evaluate whether or not the user is allowed to access a particular function through bizrule call.
But the answer in the linked question in the comment is a sensible one and is preferred for more complex role based access management. Since the rules are externally stored you can just call the check function with the controller and its action and bam, you have your true or false.