Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums CodeIgniter 4 CodeIgniter 4 Feature Requests New more Secure Auto Routing
New more Secure Auto Routing
  • Offline kenjis
    Administrator
  • *******
  • Posts: 3,671
    Threads: 96
    Joined: Oct 2014
    Reputation: 231
#10
02-20-2023, 05:24 PM

(02-20-2023, 04:49 PM)sneakyimp Wrote: 2) separating permissions and access control into separately defined filters makes it less clear what permissions are required where because these permissions would live in some entirely different location from the controller methods. I believe that enforcing permissions directly in a controller is more secure, makes it much clearer how access is controlled, and completely eliminates the confusing three-way tangle of routes/filters/controllers, etc.

Yes, it is true.
So relying on filters to implement access control might be a bad idea.

But CI4 already has controller filters and there is no way to set a filter to a controller.
It seems better to have a way to set a filter to a controller.
ci-phpunit-test | CodeIgniter Testing Guide | CodeIgniter 3 to 4 Upgrade Helper
Reply


Messages In This Thread
New more Secure Auto Routing - by kenjis - 04-11-2022, 10:24 PM
RE: New more Secure Auto Routing - by InsiteFX - 04-12-2022, 12:14 AM
RE: New more Secure Auto Routing - by ignitedcms - 04-12-2022, 01:38 AM
RE: New more Secure Auto Routing - by kenjis - 05-07-2022, 05:58 AM
RE: New more Secure Auto Routing - by InsiteFX - 05-08-2022, 01:27 AM
RE: New more Secure Auto Routing - by sneakyimp - 02-08-2023, 06:32 PM
RE: New more Secure Auto Routing - by kenjis - 02-08-2023, 06:50 PM
RE: New more Secure Auto Routing - by kenjis - 02-08-2023, 08:57 PM
RE: New more Secure Auto Routing - by sneakyimp - 02-20-2023, 04:49 PM
RE: New more Secure Auto Routing - by kenjis - 02-20-2023, 05:24 PM
RE: New more Secure Auto Routing - by kenjis - 02-20-2023, 05:43 PM



Theme © iAndrew 2016 - Forum software by © MyBB