| # |
Jun 18th 2019, 20:31 |
 devito |
@challgren thanks, ill look into a ajax req |
| # |
Jun 18th 2019, 20:24 |
devito |
i mean if you need user based AA you kinda are |
| # |
Jun 18th 2019, 20:24 |
ricksaccous |
pretty sure i'm just describing acls but i don't want to bring that in to this project just yet, cause yeah, not in the spec and such |
| # |
Jun 18th 2019, 20:24 |
devito |
yeah |
| # |
Jun 18th 2019, 20:23 |
ricksaccous |
just groups would be easy |
| # |
Jun 18th 2019, 20:23 |
devito |
ahh |
| # |
Jun 18th 2019, 20:22 |
ricksaccous |
and can be edited |
| # |
Jun 18th 2019, 20:22 |
ricksaccous |
to where we can set group a up with permissions to do x y and z |
| # |
Jun 18th 2019, 20:22 |
ricksaccous |
well we need it more fine tuned |
| # |
Jun 18th 2019, 20:22 |
devito |
and group b can do that |
| # |
Jun 18th 2019, 20:22 |
devito |
group a can do this |
| # |
Jun 18th 2019, 20:22 |
devito |
i guess you can do that per user group no? |
| # |
Jun 18th 2019, 20:22 |
devito |
mm |
| # |
Jun 18th 2019, 20:21 |
ricksaccous |
the only hacky/lame part will be assigning the permissions since it's not descibed in db but as an array |
| # |
Jun 18th 2019, 20:21 |
ricksaccous |
and use that in the request policy |
| # |
Jun 18th 2019, 20:21 |
ricksaccous |
in the identity |
| # |
Jun 18th 2019, 20:21 |
ricksaccous |
I'll just contain() their permissions on log in |
| # |
Jun 18th 2019, 20:21 |
devito |
mm |
| # |
Jun 18th 2019, 20:20 |
ricksaccous |
setting up that whole system is not in our spec, and will take some time |
| # |
Jun 18th 2019, 20:20 |
ricksaccous |
I think I'll just use my ghetto array and patch for now |
| # |
Jun 18th 2019, 20:20 |
devito |
as long as you dont mind the db overhead with each req |
| # |
Jun 18th 2019, 20:19 |
devito |
the acl plugin for 3.x is pretty solid |
| # |
Jun 18th 2019, 20:19 |
challgren |
@devito you can’t unless you do it on the browser side via javascript |
| # |
Jun 18th 2019, 20:19 |
devito |
@ricksaccous yeah thats what acl’s are |
| # |
Jun 18th 2019, 20:18 |
devito |
beforeRedirect? |
| # |
Jun 18th 2019, 20:18 |
devito |
which callback in the controller life cycle should I use to detect when a user is leaving a page? |
| # |
Jun 18th 2019, 20:02 |
ricksaccous |
hmmmm |
| # |
Jun 18th 2019, 19:42 |
ricksaccous |
I'm guessing this is what ACLs are? |
| # |
Jun 18th 2019, 19:42 |
ricksaccous |
as a serialized array |
| # |
Jun 18th 2019, 19:42 |
ricksaccous |
i'm thinking of storing the url params that i want a permission to handle in the table |
| # |
Jun 18th 2019, 19:42 |
ricksaccous |
would it be better to seed a user permissions table |
| # |
Jun 18th 2019, 19:41 |
ricksaccous |
so i want users -> user roles -> user permissions |
| # |
Jun 18th 2019, 19:41 |
ricksaccous |
right now I have a permissions array and I plan on just saving a version of that array as a hasMany to each role i create |
| # |
Jun 18th 2019, 19:41 |
ricksaccous |
authorize/authenticate |
| # |
Jun 18th 2019, 19:40 |
ricksaccous |
and used it with the new plugins? |
| # |
Jun 18th 2019, 19:40 |
ricksaccous |
anyone ever built a permissions system? |
| # |
Jun 18th 2019, 19:05 |
hollistergraham123 |
I am using this code but when it goes to marshall it is marshaling the active_store_inventory record of item as a new entity even though it has an id. Any thoughts |
| # |
Jun 18th 2019, 19:05 |
hollistergraham123 |
$associations = [ ‘Procedures’, ‘Items’ => [‘associated’ => ‘ActiveStoreInventories’], ];$maintenance = $this->Maintenances->patchEntity($maintenance, $data, [‘associated’ => $associations] ); |
| # |
Jun 18th 2019, 16:27 |
daniel.upshaw |
You can put that anywhere in your controller method and not have to return it |
| # |
Jun 18th 2019, 16:26 |
daniel.upshaw |
@neon1024 Another way might be `$this->autoRender = false` ... Not sure which way is preferred |
| # |
Jun 18th 2019, 16:24 |
neon1024 |
Sorted it with `return $this->render(false)` |