#788 - Mapping: add ACL + units tests (!406) · Merge requests · Comptoir / Comptoir du Libre v2 - Current version · GitLab

Fabrice Gangler requested to merge 788_ACL_TU_refactor into develop Mar 09, 2020

ACL + units tests

admin role can use each action
connected user have no access yet ---> HTTP 403
anonymous user have no access yet ---> redirect to login

implement some magical CakePHP methods:

beforeFilter() --> magical CakePHP method
- deny access to an anonymous user
- stop the JSON requests (except for actions allowed to admin)
isAuthorized() --> magical CakePHP method
- Manage all rights for the controllers' actions, with the exception of anonymous users