33namespace yii2mod \rbac \filters ;
44
55use Yii ;
6- use yii \base \InlineAction ;
6+ use yii \base \Action ;
7+ use yii \base \Module ;
8+ use yii \helpers \ArrayHelper ;
9+ use yii \helpers \Url ;
710
811/**
912 * Class AccessControl
@@ -17,25 +20,24 @@ class AccessControl extends \yii\filters\AccessControl
1720 public $ params
1821
1922 /**
20- * This method is invoked right before an action is to be executed (after all possible filters.)
21- *
22- * @param InlineAction $action the action to be executed.
23- * @return boolean whether the action should continue to be executed.
23+ * @var array list of action that not need to check access.
24+ */
25+ public $ allowActions
26+
27+ /**
28+ * @inheritdoc
2429 */
2530 public function beforeAction ($ action
2631 {
27- $ actionId$ actiongetUniqueId ();
28- $ user$ appgetUser ();
29- $ paramsisset ($ this params [$ actionid ]) ? $ this params [$ actionid ] : [];
32+ $ controller$ actioncontroller ;
33+ $ paramsgetValue ($ this params , $ actionid , []);
3034
31- if ($ usercan ('/ ' . $ actionId $ params
35+ if (Yii:: $ app -> user ->can ('/ ' . $ action -> getUniqueId () , $ params
3236 return true ;
3337 }
3438
35- $ controller$ actioncontroller ;
36-
3739 do {
38- if ($ usercan ('/ ' . ltrim ($ controllergetUniqueId () . '/* ' , '/ ' ))) {
40+ if (Yii:: $ app -> user ->can ('/ ' . ltrim ($ controllergetUniqueId () . '/* ' , '/ ' ))) {
3941 return true ;
4042 }
4143 $ controller$ controllermodule ;
@@ -44,23 +46,81 @@ public function beforeAction($action)
4446 return parent ::beforeAction ($ action
4547 }
4648
47-
4849 /**
49- * Returns a value indicating whether the filer is active for the given action.
50- *
51- * @param InlineAction $action the action being filtered
52- * @return boolean whether the filer is active for the given action.
50+ * @inheritdoc
5351 */
5452 protected function isActive ($ action
5553 {
56- $ uniqueId$ actiongetUniqueId ();
57-
58- if ($ uniqueId$ appgetErrorHandler ()->errorAction ) {
59- return false ;
60- } else if (Yii::$ appuser ->isGuest && Yii::$ appuser ->loginUrl == $ uniqueId
54+ if ($ this isErrorPage ($ action$ this isLoginPage ($ action$ this isAllowedAction ($ action
6155 return false ;
6256 }
6357
6458 return parent ::isActive ($ action
6559 }
60+
61+ /**
62+ * Returns a value indicating whether a current url equals `errorAction` property of the ErrorHandler component
63+ *
64+ * @param Action $action
65+ * @return bool
66+ */
67+ private function isErrorPage ($ action
68+ {
69+ if ($ actiongetUniqueId () === Yii::$ appgetErrorHandler ()->errorAction ) {
70+ return true ;
71+ }
72+
73+ return false ;
74+ }
75+
76+ /**
77+ * Returns a value indicating whether a current url equals `loginUrl` property of the User component
78+ *
79+ * @param Action $action
80+ * @return bool
81+ */
82+ private function isLoginPage ($ action
83+ {
84+ $ loginUrltrim (Url::to (Yii::$ appuser ->loginUrl ), '/ ' );
85+
86+ if (Yii::$ appuser ->isGuest && $ actiongetUniqueId () === $ loginUrl
87+ return true ;
88+ }
89+
90+ return false ;
91+ }
92+
93+ /**
94+ * Returns a value indicating whether a current url exists in the `allowActions` list.
95+ *
96+ * @param Action $action
97+ * @return bool
98+ */
99+ private function isAllowedAction ($ action
100+ {
101+ if ($ this owner instanceof Module) {
102+ $ ownerId$ this owner ->getUniqueId ();
103+ $ id$ actiongetUniqueId ();
104+ if (!empty ($ ownerIdstrpos ($ id$ ownerId'/ ' ) === 0 ) {
105+ $ idsubstr ($ idstrlen ($ ownerId1 );
106+ }
107+ } else {
108+ $ id$ actionid ;
109+ }
110+
111+ foreach ($ this allowActions as $ route
112+ if (substr ($ route1 ) === '* ' ) {
113+ $ routertrim ($ route"* " );
114+ if ($ route'' || strpos ($ id$ route0 ) {
115+ return true ;
116+ }
117+ } else {
118+ if ($ id$ route
119+ return true ;
120+ }
121+ }
122+ }
123+
124+ return false ;
125+ }
66126}
0 commit comments