[Catalyst] Authorization Failure
Ascii King
tech at swattermatter.com
Fri May 8 17:25:32 GMT 2009
OK. I'll pull out some clear code examples.
Thanks
Tomas Doran wrote:
> Ascii King wrote:
>> the authorization component of my application no longer works
>> properly. Did something change with Catalyst::Plugin::Authorization?
>> I searched the lists, but I didn't see anything.
>
> <snip>
>
> The tests still all pass, and they do test this sort of thing.
>
>> When testing the above statement, admin and office are supposed to be
>> allowed access to 'list_account'. However, admin can access it, but
>> office and remote cannot. If I change it to 'allow_access_if' then
>> everyone can get access.
>
> I can't really make a call about if it's working or not without
> knowing a lot more about your application structure, and your
> currently logged in user / roles etc.
>
> I'd recommend making a TestApp, pulling the relevant bits of
> controller code out (the bodies can be mostly blank, you only care
> about the paths), setting up trivial auth (no DB or anything needed,
> just use Auth::Store::Minimal), and see if you can replicate the issue
> outside of your main application..
>
> Even if you get the same issues, you now have something small and easy
> to understand which you can show to other people, without them having
> to grok your entire app..
>
> Cheers
> t0m
>
> _______________________________________________
> List: Catalyst at lists.scsys.co.uk
> Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
> Searchable archive:
> http://www.mail-archive.com/catalyst@lists.scsys.co.uk/
> Dev site: http://dev.catalyst.perl.org/
>
More information about the Catalyst
mailing list