Development

#2273 (Permission problem with the sfPJSPlugin)

You must first sign up to be able to contribute.

Ticket #2273 (closed defect: fixed)

Opened 6 years ago

Last modified 5 years ago

Permission problem with the sfPJSPlugin

Reported by: Tartembouille Assigned to: fabien
Priority: major Milestone:
Component: sfPJSPlugin Version: 1.0.0
Keywords: Cc:
Qualification:

Description

There a "problem" undocumented in the sfPJSPlugin.

If you create an action that will serve a javascript in a permission protected module, in exemple entreprise/jsSearch, the javascript will not be accessible because the plugin forward the javascript call to tje sfPJS/index action. But this one is not accessible !

So we have to create a sfPJS module in our application, with a security.yml filled like that : 

index:
  is_secure: off

With that, the plugin action is accessible, and the normal persmissions defined for the real action entreprise/jsSearch (the one that render the javascript) are respected.

So we have to create a sfPJS module in all our applications with a security.yml and the index action unsecured.

Change History

09/20/07 18:47:59 changed by Tartembouille

  • component changed from other to sfPJSPlugin.

12/06/07 15:08:32 changed by gordon

  • status changed from new to closed.
  • resolution set to fixed.

(In [6338]) sfPJSPlugin closes #2273