[Catalyst] What's the best way to exclude static requests from
needing user to log in?
John Romkey
romkey at apocalypse.org
Sun Apr 19 02:56:21 GMT 2009
On Apr 18, 2009, at 8:06 PM, kakimoto at tpg.com.au wrote:
> hi, all
>
> what's the best way to exclude static requests from needing the user
> to log in?
The best way to exclude static requests from needing the user to log
in is to not run them through Catalyst at all. Configure your web
server so that static files are served directly by the server. This
will greatly improve performance as well as simplify your Catalyst code.
Unless that's not what you mean by static.
If you by static you still mean some dynamic content, I would strongly
avoid putting all the logic for access control in Root's auto method.
Root's auto method then knows too much about the implementation
details of each controller. Instead put the access control logic where
it belongs - with the stuff it's controlling access to.
- john romkey
http://www.romkey.com/
More information about the Catalyst
mailing list