[Catalyst] What's the best way to exclude static requests from needing user to log in?

John Romkey romkey at apocalypse.org
Sun Apr 19 02:56:21 GMT 2009


On Apr 18, 2009, at 8:06 PM, kakimoto at tpg.com.au wrote:
> hi, all
>
>   what's the best way to exclude static requests from needing the user
> to log in?

The best way to exclude static requests from needing the user to log  
in is to not run them through Catalyst at all. Configure your web  
server so that static files are served directly by the server. This  
will greatly improve performance as well as simplify your Catalyst code.

Unless that's not what you mean by static.

If you by static you still mean some dynamic content, I would strongly  
avoid putting all the logic for access control in Root's auto method.  
Root's auto method then knows too much about the implementation  
details of each controller. Instead put the access control logic where  
it belongs - with the stuff it's controlling access to.
	- john romkey
	http://www.romkey.com/




More information about the Catalyst mailing list