yii权限控制的方法(三种方法)

本文实例讲述了yii权限控制的方法。分享给大家供大家参考，具体如下：

这里摘录以下3种：

1. 通过accessControl：

public function filters(){  return array(    'accessControl', // perform access control for CRUD operations  );}/** * Specifies the access control rules. * This method is used by the 'accessControl' filter. * @return array access control rules */public function accessRules(){  return array(    array('allow', // allow authenticated users to access all actions      'users'=>array('@'),    ),    array('deny', // deny all users      'users'=>array('*'),    ),  );}

2. 通过插件（如：right）

public function filters(){  return array(    'rights',  );}

3. 混合模式:

/** * @return array action filters */public function filters(){  return array(    'updateOwn + update', // Apply this filter only for the update action.    'rights',  );}/** * Filter method for checking whether the currently logged in user * is the author of the post being accessed. */public function filterUpdateOwn($filterChain){  $post=$this->loadModel();  // Remove the 'rights' filter if the user is updating an own post  // and has the permission to do so.  if(Yii::app()->user->checkAccess('PostUpdateOwn', array('userid'=>$post->author_id)))    $filterChain->removeAt(1);  $filterChain->run();}

如果有权限的基础上，开放某些动作的权限，可以通过allowedActions:

public function allowedActions(){  return 'autocomplate,autocomplate2';}

希望本文所述对大家基于Yii框架的PHP程序设计有所帮助。