Error 403 You are not authorized to perform this action in yii framework -

-

i have followed http://www.larryullman.com/2010/01/04/simple-authentication-with-the-yii-framework/ creating login system using database.
after login , trying access admin pages got 

error 403 not authorized perform action

idea why how solve issue?
see access rule
public function accessrules() {     return array(     array('allow',  // allow users perform 'index' , 'view' actions         'actions'=>array('index','view'),         'users'=>array(''),     ),     array('allow', // allow authenticated user perform 'create' , 'update' actions         'actions'=>array(),         'users'=>array('@'),     ),     array('allow', // allow admin user perform 'admin' , 'delete' actions         'actions'=>array('admin','delete','create','update' ),  //          'users'=>array('admin'),         'expression'=>'isset($user->role) && ($user->role==="admin")',     ),     array('deny',  // deny users         'users'=>array(''),         ),     ); }

1- make sure accessrules() has allowed admin action & (signed in), , on top of other rules or @ least put on top of deny rule. don't me wrong, not required on top of other rules, default last rule in book deny *, if put admin rule below it, won't have chance access action admin.

 public function accessrules()         {                 return array(                          array('allow',  // allow users perform 'index' , 'view' actions                         'actions'=>array('index','view', 'checkout'),                         'users'=>array('*'),                     )                 );         }

2- if have correctly updated accessrules(), need check make sure account you're using sign in, user has access admin pages. operation in task user management, , assigned role owner. user must owner of project you're browse. go selecting database make sure on that.


Comments

Post a Comment

Popular posts from this blog

java - activate/deactivate sonar maven plugin by profile? -

-
i use sonar plugin executes if activated in maven profile. sonar runs on every compile. the problem build fail other team members not have sonar application installed locally. pom.xml checked in team members same copy including sonar configuration, don't want them modify purpose of disabling sonar (they might inadvertently check modified copy in). please advise how configure maven (.m2/settings.xml) and/or pom.xml sonar feature can enabled/disabled local profile. here sonar configuration in each project's pom.xml: <plugin> <groupid>org.codehaus.mojo</groupid> <artifactid>sonar-maven-plugin</artifactid> <version>1.0</version> <executions> <execution> <id>make-sonar</id> <phase>compile</phase> <goals> <goal>sonar</goal> </goals> </execution> </executions> ...
Read more

python - TypeError: can only concatenate tuple (not "float") to tuple -

-
i'm new python, question might easy, anyway, patience: as trying call newton-raphson method calculate implied volatility in black-scholes formula call/put option pricing, first thing is, newton method in scipy.optimize seems calculate function's zeros, in black-scholes formula, want function's value option price, not zero. (i'm new here programming, i'm not sure techniques.) should write function things like: def f(sigma, price): return bsformula(s0,k,r,t,q,sigma) - price then, while calling newton method, takes args=() 1 parameter in function, write this: value = newton(bsprice2, 0.5, args=price) but error message: file "bs.py", line 36, in bsimpvol value = newton(bsprice2, 0.5, args=float(price)) file "/usr/lib/python2.7/dist-packages/scipy/optimize/zeros.py", line 143, in newton q0 = func(*((p0,) + args)) typeerror: can concatenate tuple (not "float") tuple could tell me why that? how fix it? apprecia...
Read more

java - What is the difference between String. and String.this. ? -

-
this question has answer here: meaning of .this , .class in java 2 answers i'll straight point. im still learning bit of syntax , want know difference between code is code a: public class buttonz extends jbutton{ public buttonz(){ settext(new string(string.valueof(i))); } } please ignore fact i undeclared, not lost. code b: public class buttonz extends jbutton{ public buttonz(){ settext(new string(string.this.charat(i))); } } what don't yet understand difference in typing string.this , string. i under assumption when use dot operator on class accessing it's static methods(and/or variables if they're not hidden). i have studied little bit , have concluded when using string. accessing string static methods.. when using string.this. i'm accessing methods class buttonz extendi...
Read more