rmt / authorization-bundle
Bundle used for exporting access controls for entities and a custom voter to use with redis for accessing entities
Installs: 858
Dependents: 0
Suggesters: 0
Security: 0
Stars: 1
Watchers: 2
Forks: 0
Open Issues: 0
Type:symfony-bundle
Requires
- php: ^7.1.3
- api-platform/api-pack: ^1.1
- predis/predis: ^1.0
- symfony/console: *
- symfony/finder: 4.3.*
- symfony/framework-bundle: ^4.2
README
Installation
composer require rmt/authorization-bundle
Requirements
- php ^7.1.3
- Symfony Framework
- Symfony Bundle
- Symfony Finder
- Symfony Console
- Api Platform
- Predis
Usage
To implement authorization for entities it is required to implement the SecuredInterface for the Entities that need Authorization.
If the entity implements the SecuredInterface it is only needed to add the is_granted attribute to @ApiResource annotation. Not all operations are needed for the authorization to work.
As you can see from the previous screenshot the collection operation POST instead of security uses security_post_denormalize, that is because in case of a POST request the data firstly needs to be persisted in doctrine and only afterwards we can check for authorization.
That is a very important thing to keep in mind, if that operation will use just security no one will be able to POST any resources.
Accepted Attributes
The only accepted attributes are READ , WRITE, DELETE , any other attribute used will trigger an AccessDeniedException!
Things to keep in mind
- The script will be set to only run when a deployment will run
- The users access rights will come from redis