rschneider/fitness-web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add access control to backend

Browse Source
This commit is contained in:
Roland Schneider
2015-11-02 14:32:19 +01:00
parent e34b150d74
commit 1ee0a6bbe9
13 changed files with 106 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
backend/controllers/UserController.php
View File

@@ -29,6 +29,18 @@ class UserController extends Controller
'delete' => ['post'],
],
],
'access' => [
'class' => \yii\filters\AccessControl::className(),
'only' => [ 'index', 'create','update','view'],
'rules' => [
// allow authenticated users
[
'allow' => true,
'roles' => ['@'],
],
// everything else is denied
],
],
];
}