Ask a question

Popular technologies


Latest questions:

162 php - change logo default notification email laravel 8
847 php - laravel eloquent - check if all values of array in table
470 how to upload pdf or doc or txt files in php
647 html - Output 1 Row only of PHP Array as Bold Text
358 javascript - Stripe Connect : Content Security Policy issue
944 php - How to assign 1 user to 1 order id?
270 Invoke a program using argument vector in PHP
212 php - Want to run multiple document upload and insert query at same time
913 php - IlluminateContractsContainerBindingResolutionException - Target class [CommandMakeCommand] does not exist
936 php - reload an specific div without refresh whole page
  1. Home
  2. php - CakePHP Controller beforeFilter custom validation to prevent save data into DB
190 votes
1 answers

php - CakePHP Controller beforeFilter custom validation to prevent save data into DB

mangohost Get the solution ↓↓↓

I have a Controller and a few functions inside. Some function are basically save data into DB. One of the function require a filter that specific type of user can't do write access into DB.

My question is how do I block to save data into db for specific user role.

class TestController extends AppController {
     public function beforeFilter(){
        if(in_array($this->action, ['f1','f2'])) {
             if($this->authenticatedUser['role'] == 'readonly') {
                //return message
                //block save data into db
             }
         }
     }

     public function f1() {
        //save data into db
     }

     public function f2() {
        //save data into db
     }

     public function f3() {
     }
}

When I tried to write using f1 or f2, it goes tobeforeFilter and show the message as well but data save into db also. How should I block it while I tried to write data into db onbeforeFilter.

74
votes

Answer

Solution:

Here is some logic:

  • check if the request is a post

  • check which method is requested

  • if both checks match, create a flash message and make a GET redirect to the desired method

    if($this->request->is('post') && in_array($this->action, ['f1','f2'])) {
    if($this->authenticatedUser['role'] == 'readonly') {
         //set flash message
         //get redirect to action
    }
}

Next

function f1() {
   // if request is post, save data
   // else return find data or empty object / array
}

Source

Share

Didn't find the answer?

Our community is visited by hundreds of web development professionals every day. Ask your question and get a quick answer for free.

Similar questions

Find the answer in similar questions on our website.

887 php - Insert complete product data into database when checkbox is checked
950 bootstrap 4 - Export data into php array from multipages dataTable
716 php - Create dynamic DataTable from database
418 php - How can I set a specific PhpSession Cookie for a webpage?
724 php - Laravel HasManyThrough nor BelongsToMany doesn't work in my case. Is it database structure problem?
172 php - Put a login on top of my web space to prevent access to my subfolders
615 linux - PHP-FPM Exporter Binary can not access php unix socket
959 Getting Feedback from a POST request - PHP
198 php - PHPUnit test not sharing the entity manager with Symfony
848 php - Missing data from joined table on query

Write quick answer

Do you know the answer to this question? Write a quick response to it. With your help, we will make our community stronger.




About the technologies asked in this question

PHP

PHP (from the English Hypertext Preprocessor - hypertext preprocessor) is a scripting programming language for developing web applications. Supported by most hosting providers, it is one of the most popular tools for creating dynamic websites. The PHP scripting language has gained wide popularity due to its processing speed, simplicity, cross-platform, functionality and distribution of source codes under its own license.
https://www.php.net/


CakePHP

CakePHP is a framework that has been around since 2005 and is known for the convenience it gives web developers. It needs very modest settings, does not require the use of XML or YAML files. It has its own ORM, which sets it apart from other similar tools. In terms of security, it is also doing well, in particular, it has a protection system against CSRF attacks.
https://cakephp.org/

Welcome to webdevask.com

Welcome to webdevask.com

Welcome to the Q&A site for web developers. Here you can ask a question about the problem you are facing and get answers from other experts. We have created a user-friendly interface so that you can quickly and free of charge ask a question about a web programming problem. We also invite other experts to join our community and help other members who ask questions. In addition, you can use our search for questions with a solution.

Get answers to specific questions

Ask about the real problem you are facing. Describe in detail what you are doing and what you want to achieve.

Help Others Solve Their Issues

Our goal is to create a strong community in which everyone will support each other. If you find a question and know the answer to it, help others with your knowledge.