我已经花了几个小时试图让 Symfony 的 ACL 在我的项目中工作,但我根本无法找到解决方案。这是我的测试示例:
$competition = $this->getDoctrine()->getManager()
->getRepository('MyBundle:Competition')->find(158);
$objectIdentity = ObjectIdentity::fromDomainObject($competition);
$aclProvider = $this->get('security.acl.provider');
try {
$acl = $aclProvider->findAcl($objectIdentity);
} catch (\Symfony\Component\Security\Acl\Exception\AclNotFoundException $e) {
$acl = $aclProvider->createAcl($objectIdentity);
}
// retrieving the security identity of the currently logged-in user
$securityIdentity = UserSecurityIdentity::fromAccount(
$this->get('security.context')->getToken()->getUser());
// grant owner access
$acl->insertObjectAce($securityIdentity, MaskBuilder::MASK_EDIT);
$aclProvider->updateAcl($acl);
.
$competition = $this->getDoctrine()->getManager()
->getRepository('MyBundle:Competition')->find(158);
$foo = $this->get('security.context')->isGranted(MaskBuilder::MASK_EDIT, $competition);
var_dump($foo); // always bool(false)
我可以看到表格中显示的数据,但isGranted总是返回 false。知道我在做什么错吗?
acl_classes:
id class_type
2 Me\MyBundle\Entity\Competition
acl_entries:
id class_id object_identity_id security_identity_id field_name ace_order mask granting granting_strategy audit_success audit_failure
1 2 3 2 NULL 0 4 1 all 0 0
acl_object_identities:
id parent_object_identity_id class_id object_identifier entries_inheriting
3 NULL 2 158 1
acl_object_identity_ancestors:
object_identity_id ancestor_id
3 3
acl_security_identities:
id identifier username
2 Me\MyBundle\Entity\User-Me 1