マスク ビルダーに追加printまたは追加したい。somethingどうすればいいですか?公式クックブック ( http://symfony.com/doc/master/cookbook/security/acl.html#cumulative-permissions ) から、特別なマスクを追加する方法がわかりません。
例:
$builder = new MaskBuilder();
$builder
->add('view')
->add('edit')
->add('delete')
->add('undelete')
;
$mask = $builder->get(); // int(29)
私の質問から私はしたい:
$builder = new MaskBuilder();
$builder
->add('view')
->add('print')
->add('or-something-i-want')
;
$mask = $builder->get();
1- デフォルトから拡張する独自の MAskBuilder を作成する必要があります
namespace Acm\DefaultBundle\Permission;
use Symfony\Component\Security\Acl\Permission\MaskBuilder as BaseMaskBuilder;
class MaskBuilder extends BaseMaskBuilder {
const MASK_PRINT = 256; // 1 << 8
const CODE_PRINT = 'A'; }
2- PermissionMap を置き換える必要があります
namespace Acm\DefaultBundle\Permission;
use Symfony\Component\Security\Acl\Permission\BasicPermissionMap;
use Acm\DefaultBundle \Permission\MaskBuilder;
class PermissionMap extends BasicPermissionMap {
const PERMISSION_PRINT = 'PRINT';
const PERMISSION_VIEW = 'VIEW';
const PERMISSION_EDIT = 'EDIT';
const PERMISSION_CREATE = 'CREATE';
const PERMISSION_DELETE = 'DELETE';
const PERMISSION_UNDELETE = 'UNDELETE';
const PERMISSION_OPERATOR = 'OPERATOR';
const PERMISSION_MASTER = 'MASTER';
const PERMISSION_OWNER = 'OWNER';
private $map = array(
self::PERMISSION_VIEW => array(
MaskBuilder::MASK_VIEW,
MaskBuilder::MASK_EDIT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_PRINT => array(
MaskBuilder::MASK_PRINT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,),
self::PERMISSION_EDIT => array(
MaskBuilder::MASK_EDIT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_CREATE => array(
MaskBuilder::MASK_CREATE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_DELETE => array(
MaskBuilder::MASK_DELETE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_UNDELETE => array(
MaskBuilder::MASK_UNDELETE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_OPERATOR => array(
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_MASTER => array(
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_OWNER => array(
MaskBuilder::MASK_OWNER,
),
);
/**
* {@inheritDoc}
*/
public function getMasks($permission, $object)
{
if (!isset($this->map[$permission])) {
return null;
}
return $this->map[$permission];
}
/**
* {@inheritDoc}
*/
public function contains($permission)
{
return isset($this->map[$permission]);
}
}
3-これをconfig.ymlに追加して、デフォルトのPermissionsMapを置き換えます
parameters:
security.acl.permission.map.class: Pitchbull\CalendarBundle\Permission\Permission\PermissionMap
4- PRINT によって付与されていることを確認できるようになりました
$securityContext = $this->get('security.context');
// check for apply access
if false === $securityContext->isGranted('PRINT', $service)) {
//your access is denied
}
MaskBuilder定数の拡張とオーバーライドを試みることができます。
namespace Your\AclBundle\Permission;
use Symfony\Component\Security\Acl\Permission\MaskBuilder;
class YourMaskBuilder extends MaskBuilder
{
const MASK_VIEW = 1; // 1 << 0
const MASK_PRINT = 2; // 1 << 1
const MASK_WHATYOUWANT = 4; // 1 << 2
// ...
const CODE_VIEW = 'V';
const CODE_PRINT = 'P';
const CODE_WHATYOUWANT = 'W';
// ...
}
そして使用:
$builder = new YourMaskBuilder();
$builder
->add('view')
->add('print')
->add('whatyouwant')
;
$mask = $builder->get();
@Duvan の回答
に加えて
、現在の symfony バージョンでは、次のようにマップをオーバーライドする必要があります。
namespace Acm\DefaultBundle\Permission;
use Symfony\Component\Security\Acl\Permission\BasicPermissionMap;
use Acm\DefaultBundle \Permission\MaskBuilder;
class PermissionMap extends BasicPermissionMap {
const PERMISSION_PRINT = 'PRINT';
const PERMISSION_VIEW = 'VIEW';
const PERMISSION_EDIT = 'EDIT';
const PERMISSION_CREATE = 'CREATE';
const PERMISSION_DELETE = 'DELETE';
const PERMISSION_UNDELETE = 'UNDELETE';
const PERMISSION_OPERATOR = 'OPERATOR';
const PERMISSION_MASTER = 'MASTER';
const PERMISSION_OWNER = 'OWNER';
protected $map
public function __construct(){
$this->map = array(
self::PERMISSION_VIEW => array(
MaskBuilder::MASK_VIEW,
MaskBuilder::MASK_EDIT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_PRINT => array(
MaskBuilder::MASK_PRINT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,),
self::PERMISSION_EDIT => array(
MaskBuilder::MASK_EDIT,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_CREATE => array(
MaskBuilder::MASK_CREATE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_DELETE => array(
MaskBuilder::MASK_DELETE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_UNDELETE => array(
MaskBuilder::MASK_UNDELETE,
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_OPERATOR => array(
MaskBuilder::MASK_OPERATOR,
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_MASTER => array(
MaskBuilder::MASK_MASTER,
MaskBuilder::MASK_OWNER,
),
self::PERMISSION_OWNER => array(
MaskBuilder::MASK_OWNER,
),
);
}
/**
* {@inheritDoc}
*/
public function getMasks($permission, $object)
{
if (!isset($this->map[$permission])) {
return null;
}
return $this->map[$permission];
}
/**
* {@inheritDoc}
*/
public function contains($permission)
{
return isset($this->map[$permission]);
}
}