|
PntNoAuthenticator |
PntSecurityException |
PntSecurityManager |
PntValidationException |
|
__construct |
authenticate |
checkAccessApp |
checkAccessRef |
checkCreateClass |
checkCreateObject |
checkDeleteClass |
checkDeleteObject |
checkEditClass |
checkEditObject |
checkEditProperty |
checkModifyClass |
checkModifyInDomainDir |
checkRefEqual |
checkSelectProperty |
checkViewClass |
checkViewInDomainDir |
checkViewObject |
checkViewProperty |
getAuthenticator |
getMessageDeniedAccessApp |
getMessageDeniedAccessRef |
getMessageDeniedCreateClass |
getMessageDeniedCreateObject |
getMessageDeniedDeleteClass |
getMessageDeniedDeleteObject |
getMessageDeniedEditClass |
getMessageDeniedEditObject |
getMessageDeniedEditProperty |
getMessageDeniedModifyClass |
getMessageDeniedModifyInDomainDir |
getMessageDeniedSelectProperty |
getMessageDeniedViewClass |
getMessageDeniedViewInDomainDir |
getMessageDeniedViewObject |
getMessageDeniedViewProperty |
getMessageDeniedViewPropertyValues |
getMessageFootprintMismatch |
initAuthenticator |
isAuthenticated |
isEntryPage |
newFootprintId |
|
<?php
/* Copyright (c) MetaClass, 2003-2013
Distrubuted and licensed under under the terms of the GNU Affero General Public License
version 3, or (at your option) any later version.
This program is distributed WITHOUT ANY WARRANTY; without even the implied warranty
of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
See the License, http://www.gnu.org/licenses/agpl.txt */
/** Objects of this class are designed to give detailed control over what
* a user van see and do. Currently the default user interface does check on
* invocation of Pages, Dialogs and Actions, hides multi value property buttons and
* tables, but does not hide or make readOnly widgets, fields and columns
* and does not ghost Create, Update and Delete buttons.
*
* Check methods should return an appropriate error message to be displayed
* in the access denied error page
*
* This abstract superclass provides default behavior for the concrete
* subclass SecurityManager in the root classFolder or in the application classFolder.
* By default its more detailed checks delegate to broader checks, eventually ending
* in checking access on domainDir level, there allowing all.
* you may override methods in the concrete subclass, don't modify them here.
* @see http://www.phppeanuts.org/site/index_php/Menu/178
* @package pnt
*/
class PntSecurityManager {
public $baseUrl, $tokenSalt, $authenticator;
|
Copyright (c) MetaClass, 2003-
This code is free software: you can redistribute it and/or modify
it under the terms of the GNU Affero General Public License as
published by the Free Software Foundation, either version 3 of the
License, or (at your option) any later version.
This code is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU Affero General Public License for more details.
Click here for a copy of the license or see http://www.gnu.org/licenses/ .
|
|