A Zend Framework module to easily integrate ZfcUser and ZfcRbac

v2.0.0 2018-04-19 06:14 UTC

This package is auto-updated.

Last update: 2022-06-29 01:16:20 UTC


Master Branch Build Status Coverage Status Latest Stable Version Latest Unstable Version Total Downloads

A Zend Framework module to easily integrate ZfcUser and ZfcRbac


Are your tired of doing tedious work of integrating ZfcUser and ZfcRbac again and again? Then, you are in the right place. This module comes to save us. This module, simply, gets roles of a user from the database and passes it to the ZfcRbac. You only need to focus on the domain logic of your application. No more repetive tasks.


Please use below table to figure out what version of ZfcUser you should use.

UserRbac version Supported Zend Framework version
0.x <= 2.5
1.x >= 2.6 < 3
2.x >= 3.x


  1. No need to write code for integrating ZfcUser and ZfcRbac
  2. A user`s roles are easily retrievable from the database
  3. Addition of SmartRedirectStrategy


  • Add "rarog/user-rbac": "^2.0", to your composer.json and run php composer.phar update
  • Import the schema for corresponding database in data folder
  • Enable this module in config/application.config.php
  • Copy file located in vendor/rarog/user-rbac/config/user-rbac.global.php.dist to ./config/autoload/user-rbac.global.php and change the values as you wish.

What it does

This module registers an identity provider and provides some configuration to ZfcRbac. So, you don't need to create your own identity provider. See config/module.config.php.

How it works

It gets a user's roles from the table user_role_linker and passes the roles to ZfcRbac. This module is best suited when you use ZfcRbac\Role\InMemoryRoleProvider as role provider.


Check the options available in vendor/rarog/user-rbac/config/user-rbac.global.php.dist.


This module comes with a new strategy called SmartRedirectStrategy. This simply redirects to ZfcUser's login page or route, zfcuser/login only when the user is unauthenticated. Otherwise, it shows a 403 error page!


public function onBootstrap(EventInterface $e)
    $app = $e->getApplication();
    $sm = $app->getServiceManager();
    $em = $app->getEventManager();
    $listener = $sm->get(\UserRbac\View\Strategy\SmartRedirectStrategy::class);

Known Limitation

This module is only ideal for small and medium web sites as a quick and easy way. For complicated use cases, it may not suit your need.