How to get $user->getOriginalData()->is_admin to work?

bluebag · August 4, 2021, 11:38pm

Hi,
Sorry if this is dumb question. I am new to php and CakePHP. I am implementing the Authentication and Authorization plugins into my system and doing so in accordance with the CookBook documentation.

The CookBook provides an example of implementing a Policy Pre-Condition:

namespace App\Policy;

use Authorization\Policy\BeforePolicyInterface;

class ArticlesPolicy implements BeforePolicyInterface
{
    public function before($user, $resource, $action)
    {
        if ($user->getOriginalData()->is_admin) {
            return true;
        }
        // fall through
    }
}

The CookBook also explains how to use your User class as the Identity:

namespace App\Model\Entity;

use Authorization\AuthorizationServiceInterface;
use Authorization\IdentityInterface;
use Authorization\Policy\ResultInterface;
use Cake\ORM\Entity;

class User extends Entity implements IdentityInterface
{
    /**
     * Authorization\IdentityInterface method
     */
    public function can($action, $resource): bool
    {
        return $this->authorization->can($this, $action, $resource);
    }

    /**
     * Authorization\IdentityInterface method
     */
    public function canResult($action, $resource): ResultInterface
    {
        return $this->authorization->canResult($this, $action, $resource);
    }

    /**
     * Authorization\IdentityInterface method
     */
    public function applyScope($action, $resource)
    {
        return $this->authorization->applyScope($this, $action, $resource);
    }

    /**
     * Authorization\IdentityInterface method
     */
    public function getOriginalData()
    {
        return $this;
    }

    /**
     * Setter to be used by the middleware.
     */
    public function setAuthorization(AuthorizationServiceInterface $service)
    {
        $this->authorization = $service;

        return $this;
    }

    // Other methods
}

I have implemented this and now $user->getOriginalData() works for me. However, I do not know how to implement the ->is_admin component. Sorry - the term component is probably wrong, but I don’t know what the correct term should be.

My Users model has a column with the name role and has values like Admin, User, etc..

I can call $user->getOriginalData()->role and successfully obtain values from that column.

So, do I need to add more methods to my Model\Entity\User.php or is the ->is_admin component meant to be provided inherently from the Authentication plugin?

Thanks in advance for your help.

Zuluru · August 4, 2021, 11:41pm

$user->getOriginalData()->is_admin is just an example of something you might use to give access to an admin. You’re writing the policy code, write whatever code you need there to do what you need it to.

bluebag · August 5, 2021, 12:03am

Thanks @Zuluru. Understood. It also dawned on me that the example in the cookbook assumes the Users model has a boolean is_admin column. doh.

Zuluru · August 5, 2021, 12:39am

Could also be a virtual field, but yeah.

bluebag · August 5, 2021, 4:03am

Thanks heaps @Zuluru ! That’s a perfect solution.

Topic		Replies	Views
Authentication and Authorization plugin Need Help	12	360	November 17, 2023
Blog Tutorial - Authentication and Authorization Need Help release	2	544	December 6, 2019
Getting redirected to admin dashboard and setting policy that only admin can controll the data on the table Need Help	11	593	September 4, 2023
Cake4: Authorisation for namespaces/prefixes and userroles Need Help	4	605	May 7, 2021
CakeDC/Auth: custom permissions for not logged in users Need Help help	1	33	September 10, 2024

How to get $user->getOriginalData()->is_admin to work?

Releases

Documentation

Community

How to get $user->getOriginalData()->is_admin to work?

Related topics

Releases

Documentation

Community