• Evan Prodromou's avatar
    Extend authorization framework to cover login and API use · 1525acdc
    Evan Prodromou authored
    I've extended the rights framework (centering on the Right class and Profile::hasRight()) to cover
    Web login and API use. This will make it possible to prevent login and API use by users.
    I added two new Right constants to the Right class: WEBLOGIN and API. I check these rights using
    Profile::hasRight() when initializing users. If the rights check fails, I throw an exception.
    I created a new AuthorizationException class for this particular
    exception, in order to allow a different UI for these kinds of exceptions (or whatever).
authorizationexception.php 1.77 KB