Zend Framework 2 - BjyAuthorize always denies access
I have setup the bjyoungblood/bjy-authorize module, but I am currently getting a 403 "access denied" error for each URL except for the one configured in the home route.
My module.byjauthorize.global.php looks like following:
'bjyauthorize' => array(
'guards' => array(
'BjyAuthorize\Guard\Controller' => array(
array('controller' => 'index', 'action' => 'index', 'roles' => array('guest','user')),
array('controller' => 'index', 'action' => 'stuff', 'roles' => array('user')),
array('controller' => 'zfcuser', 'roles' => array()),
//backend
array('controller' => 'Application\Controller\Index', 'roles' => array('admin')),
array('controller' => 'MyModule\MyEntity\MyEntity', 'roles' => array('admin')),
),
'BjyAuthorize\Guard\Route' => array(
array('route' => 'zfcuser', 'roles' => array('user')),
array('route' => 'zfcuser/logout', 'roles' => array('user')),
array('route' => 'zfcuser/login', 'roles' => array('guest')),
array('route' => 'zfcuser/register', 'roles' => array('guest')),
array('route' => 'home', 'roles' => array('admin')),
array('route' => 'my-entity', 'roles' => array('admin')),
),
),
),
I tried deleting the BjyAuthorize\Guard\Route part, but with no effect.
When I remove the home route then the homepage is also blocked.
So both Controller- and Route-Guard seem to work.
How can I debug this behavior?
NOTE: following is valid for BjyAuthorize 1.2.*
First of all, consider that protecting both the routes and the controllers is unnecessary. I personally always protect the controllers only, since there may be multiple routes to a same controller.
Once you removed either the route or the controller guard's config, you can:
Install Zend Developer Tools, which allows you to have an overview of the currently set Acl role, like in this picture:
Check if you have configured the correct identity provider: the default one uses ZfcUser's user id and looks up his role in the
user_roletable.- Check that the
guestrole has access to the public pages, such as thezfcusercontroller (for login actions) or thezfcuser/loginroute.
As Akrabat pointed out, the configuration for the BjyAuthorize\Guard\Controller and BjyAuthorize\Guard\Route are whitelists, which basically means that you have to setup access for the default guest role if you want to browse pages being un-authenticated.
As soon as a guard is configured, it blocks access to any not configured resource, so be sure that you have granted the role guest (or whatever you configured in $config['bjyauthorize']['default_role'] access at least the login controller or route.
- How to make MultiCheckBox Label bold or strong?
- ZF2: Can i attach textbox to multicheckbox ? How to create textbox field like "Other" or "Comment" with MultiCheckbox or group of checkboxes in ZF2?
- Zend 2 escaping single-quote
- zend framework 2, return the rendered contents of a view inside a JSON Model
- Injecting a service into a custom validator
- Save created row in datatable editor via PHP
- Zend Predicate or Predicatset
- Zend Framework 2 Doctrine 2 many to many entity relation issue
- Nesting Fieldsets under Radio or Checkbox items: Zend Framework 2
- How to resize a image while uploading in ZF2
- Validator EmailAddress can validate an array of email
- Flash messanger in zf2
- Issue with zend 2 log
- zf add inputfilter for a new fieldset element in the form class
- Logging custom elements Zend Log Formatter XML
- How to use the global.php/local.php configs in the getConfig() of a module in a Zend Framework 2 application?
- Zend Framework2 Form Errors Array To JSON
- ZF2: Who should escape & delimiter for href when using Url helper?
- Nested triggering of events in ZF2
- Save the user_id of a logged in user when submitting a form in ZF2
- Zend Framework Sql not finding column
- OnDispatch event in Service Constructor
- How can I add markup (such as microdata or a <div>) to Zf2 breadcrumbs?
- how test that the connection works in Doctrine 2?
- CORS POST request in ZF2 becomes OPTIONS request instead
- How do i execute queries and fetch data from the result in ZEND 2?
- Class "Laminas\\View\\HelperPluginManager" not found after migration from zendframework2 to laminas
- Zend Framework 2 and Doctrine 2 - Configuration for multiple databases
- Apigility and oAuth for users
- How to force composer to reinstall a library?