> Should I be using a Zend_Controller_Plugin or Zend_Action_Helper or neither?
>
> Should I check acls / auth in each action method or init if I know the whole
> controller needs some acl or used must be auth'd OR do I override the
> preDispatch method and check which action / module / controller is being
> used and centralise all acl and auth checking there?
I use a front controller plugin that checks current module and loads
the corresponding acl, derives the role from authentication (guest,
user, admin, ...) and check allowing for current resource (controller)
and action.
--
Giorgio Sironi
Piccolo Principe & Ossigeno Scripter
http://www.sourceforge.net/projects/ossigeno
没有评论:
发表评论