Packt+ | Advance your knowledge in tech

You're reading from Agile Web Application Development with Yii1.1 and PHP5 For PHP developers who know object-oriented programming, this book is the fast track to learning the Yii framework. It takes a step-by-step approach to building a complete real-world application ‚Äì teaching by practice rather than theory.

Product type Paperback

Published in Aug 2010

Publisher Packt

ISBN-13 9781847199584

Length 368 pages

Edition 1st Edition

Languages

PHP

Tools

Yii

Concepts

Front End Web Development

Table of Contents (19) Chapters

Agile Web Application Development with Yii 1.1 and PHP5

Credits

About the Author

About the Reviewers

Preface

1. Meet Yii FREE CHAPTER

2. Getting Started

3. The TrackStar Application

4. Iteration 1: Creating the Initial TrackStar Application

5. Iteration 2: Project CRUD

6. Iteration 3: Adding Tasks

7. Iteration 4: User Management and Authentication

8. Iteration 5: User Access Control

9. Iteration 6: Adding User Comments

10. Iteration 7: Adding an RSS Web Feed

11. Iteration 8: Making it Pretty - Design, Layout, Themes, and Internationalization(i18n)

12. Iteration 9: Modules - Adding Administration

13. Iteration 10: Production Readiness

Index

Iteration planning

When we first introduced our TrackStar application back in Chapter 3, The TrackStar Application, we mentioned that the application has two high-level user types: anonymous and authenticated. This is simply making a distinction between a user that has successfully logged in, and one who has not. We have also introduced the idea of authenticated users having different roles within a project. We established that, within a project, a user can be in one of three roles:

A project owner (is granted all administrative access to the project)
A project member (is granted more limited access to project features and functionality)
A project reader (only has access to read the content associated with a project, not change it in any way)

The focus of this iteration is to implement an approach to managing the access control granted to application users. We need a way to create and manage our roles and permissions, assign them to users, and enforce the access control rules we want for each...