zend_framework-----zend_acl实现用户权限的验证

zend_acl这个组件主要是通过用户定义的规则来限制各种角色对资源的访问。

首先说下role，resource是啥意思

role就是角色比如什么游客阿管理员阿之类的当让推荐使用英文的阿

resource就是资源了一般指的是控制器的名字，比如你建立了一个adminController则他对应的resource就是admin。

其他不用多说了，看下代码把！

<?php/*** Create On 2010-5-13* Author Been* QQ:281443751* Email:binbin1129@126.com**/class Plugin_AclManager extends Zend_Controller_Plugin_Abstract{protected $_defaultRole="guest";protected $_authController=array("controller"=>"account","action"=>"index");protected $_auth;public $acl;public function preDispatch(Zend_Controller_Request_Abstract $request){$this->init();//设置角色$role=$this->_auth->hasIdentity()?$this->_auth->getStorage()->read()->role:$this->_defaultRole;if(!$this->acl->hasRole($role))$role=$this->_defaultRole;if(!$this->acl->isAllowed($role,$request->getControllerName())){//echo $this->_request->getModuleName();//echo $this->_request->getModuleKey();$request->setModuleName($request->getModuleName());$request->setControllerName($this->_authController['controller']);$request->setActionName($this->_authController['action']);}}public function init(){$this->_auth=Zend_Auth::getInstance();$this->_auth->setStorage(new Zend_Auth_Storage_Session("authNameSpace"));$this->acl=new Zend_Acl();//添加角色$this->acl->addRole(new Zend_Acl_Role("guest"));$this->acl->addRole(new Zend_Acl_Role("member"),"guest");$this->acl->addRole(new Zend_Acl_Role("author"),"member");$this->acl->addRole(new Zend_Acl_Role("admin"),"author");//添加资源$this->acl->addResource(new Zend_Acl_Resource("index"));$this->acl->addResource(new Zend_Acl_Resource("account"));$this->acl->addResource(new Zend_Acl_Resource("menu"));$this->acl->addResource(new Zend_Acl_Resource("main"));$this->acl->addResource(new Zend_Acl_Resource("header"));$this->acl->addResource(new Zend_Acl_Resource("sorts"));//设置规则$this->acl->deny("guest");$this->acl->deny("member");$this->acl->allow("author");$this->acl->allow("admin");}}

这个是建立了一个插件来检测用户的权限

他是在dispatch以前调用的，当然要想调用这个插件还要去入口文件中把这个插件注册一下（ $front->registerPlugin(new Plugin_AclManager())）就ok了！