Security | JasonEisen Open Source

Security Module Screencast

October 14th, 2008 jasoneisen

I made this screencast a few weeks ago but forgot to post it.

It demonstrates setting up the security module in an existing project (a blog demo, which is also available in the repository).

Watch and learn!

Also, I have been asked how to access the ACL and things of that nature for use inside your own application. Basically, all of the methods that this provides can be found in the Security.php file in the library, and each are static methods. So for example to get the ACL object, you would use:

<?php
 
$acl = Security::getAclInstance();
 
?>

Hope this helps. I will be providing a better documentation soon.

Tags: Doctrine, php, security, Security Module, Zend

Posted in Doctrine, Security Module, Zend | 4 Comments »

The full blown Doctrine + ZF ACL module has arrived

August 26th, 2008 jasoneisen

Pasted from the google code page:

8-25-08: First release 0.1 alpha 1!

The module is now in a usable state. Simply check it out to your application/modules folder:

http://zfsecurity.googlecode.com/svn/tags/0.1-ALPHA1/

and point your browser to site.com/security/install. There is a step-by-step installer that will guide you, and you will only need to write a few lines of code to your project.

This provides a full ACL framework, as well as login authorization, group/ user management, and more. All database driven with a friendly UI.

This project assumes only the following:

You already have a project.
You are currently using Doctrine.
You already have an innodb user table.

Check it out and enjoy! Any/all feedback is very welcome.

Tags: acl, Doctrine, php, security, Zend, zend framework

Posted in Doctrine, Zend | 4 Comments »

Database driven ACL with Zend Framework

April 26th, 2008 jasoneisen

The first thing we want to do is create the following database structure.

Database Layout

Get the SQL.

The first thing that you will recognize here that you may not have seen before in other implementations is the module table. In this demonstration we will be mapping modules, controllers, and actions to modules, resources, and privileges within our zend controllers. So if a user wanted to go to example.com/admin/user/edit, they would be utilizing the admin module, user resource, and edit privilege. For ease of use, I have set up constraints within the database so that updates and deletes cascade through the other tables.

Read the rest of this entry »

Tags: acl, php, security, Zend, zend framework

Posted in Zend | 23 Comments »